Cross-site Scripting (XSS) - Stored in getgrav/grav
CVE-2022-0970
7.1HIGH
What is CVE-2022-0970?
Cross-site Scripting (XSS) - Stored in GitHub repository getgrav/grav prior to 1.7.31.
Affected Version(s)
getgrav/grav < 1.7.31
References
CVSS V3.1
Score:
7.1
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
Required
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved