• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-79

CVE-2022-23074

February 23, 2023 by

In Recipes, versions 0.17.0 through 1.2.5 are vulnerable to Stored Cross-Site Scripting (XSS), in the ‘Name’ field of Keyword, Food and Unit components. When a victim accesses the Keyword/Food/Unit endpoints, the XSS payload will trigger. A low privileged attacker will have the victim’s API key and can lead to admin’s account takeover.

CVE-2022-23077

February 23, 2023 by

In habitica versions v4.119.0 through v4.232.2 are vulnerable to DOM XSS via the login page.

CVE-2022-23081

February 23, 2023 by

In openlibrary versions deploy-2016-07-0 through deploy-2021-12-22 are vulnerable to Reflected XSS.

CVE-2022-23083

February 23, 2023 by

NetMaster 12.2 Network Management for TCP/IP and NetMaster File Transfer Management contain a XSS (Cross-Site Scripting) vulnerability in ReportCenter UI due to insufficient input validation that could potentially allow an attacker to execute code on the affected machine.

CVE-2022-23099

February 23, 2023 by

OX App Suite through 7.10.6 allows XSS by forcing block-wise read.

CVE-2022-23101

February 23, 2023 by

OX App Suite through 7.10.6 allows XSS via appHandler in a deep link in an e-mail message.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 2063
  • Go to page 2064
  • Go to page 2065
  • Go to page 2066
  • Go to page 2067
  • Interim pages omitted …
  • Go to page 2216
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE