CVE-2022-25317

CVE-2022-25317

EPSS 0.6%

An issue was discovered in Cerebrate through 1.4. genericForm allows reflected XSS in form descriptions via a user-controlled description.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://github.com/cerebrate-project/cerebrate/commit/e60d97c214f9ac6df90c87241b3b3554afc06238 https://zigrin.com/advisories/cerebrate-reflected-xss-in-form-descriptions/