CVE-2022-0838

Cross-site Scripting (XSS) - Reflected in hestiacp/hestiacp

CVSS 6.6 MEDIUMEPSS 1.1%CWE-79

Cross-site Scripting (XSS) - Reflected in GitHub repository hestiacp/hestiacp prior to 1.5.10.

CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

Affected products

hestiacp · hestiacp/hestiacp

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/hestiacp/hestiacp/commit/640f822d306ffb3eddf8ce2f46de75d7344283c1 https://huntr.dev/bounties/bd2fb1f1-cc8b-4ef7-8e2b-4ca686d8d614