CVE-2022-4736
MEDIUM WAF: High
CVSS 6.1
Published: 2022-12-25
CWE-79
A vulnerability was found in Venganzas del Pasado and classified as problematic. Affected by this issue is some unknown functionality. The manipulation of the argument the_title leads to cross site scripting. The attack may be launched remotely. The name of the patch is 62339b2ec445692c710b804bdf07aef4bd247ff7. It is recommended to apply a patch to fix this issue. VDB-216770 is the identifier assigned to this vulnerability.
WAF Coverage Analysis
Cross-Site Scripting (XSS)
High WAF Coverage
OWASP: A03:2021 Injection
941xxx - XSS / XXE
Affected Software
| Vendor | Product | Version |
|---|---|---|
| venganzasdelpasado | venganzas_del_pasado | - |
References
- github.com (Patch, Third Party Advisory)
- vuldb.com (Third Party Advisory)
- vuldb.com (Third Party Advisory)
- www.openbugbounty.org (Third Party Advisory)