← back
CVE-2022-0942

Stored XSS due to Unrestricted File Upload in star7th/showdoc

CVSS 9.4 CRITICALEPSS 0.7%CWE-79
Stored XSS due to Unrestricted File Upload in GitHub repository star7th/showdoc prior to 2.10.4.
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H
Affected products
star7th · star7th/showdoc

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/star7th/showdoc/commit/3caa32334db0c277b84e993eaca2036f5d1dbef8https://huntr.dev/bounties/a412707c-18da-4c84-adc0-9801ed8068c9