CVE-2022-2113

Cross-site Scripting (XSS) - Stored in inventree/inventree

CVSS 8.4 HIGHEPSS 0.7%CWE-79

Cross-site Scripting (XSS) - Stored in GitHub repository inventree/inventree prior to 0.7.2.

CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H

Affected products

inventree · inventree/inventree

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/inventree/inventree/commit/26bf51c20a1c9b3130ac5dd2e17649bece5ff84f https://huntr.dev/bounties/4cae8442-c042-43c2-ad89-6f666eaf3d57