CVE-2022-4598

CVSS V2 None CVSS V3 None
Description
A vulnerability has been found in Shoplazza LifeStyle 1.1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/api/theme-edit/ of the component Announcement Handler. The manipulation of the argument Text/Mobile Text leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-216193 was assigned to this vulnerability.
Overview
  • CVE ID
  • CVE-2022-4598
  • Assigner
  • cna@vuldb.com
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2022-12-18T11:15:10
  • Last Modified Date
  • 2022-12-22T16:48:54
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
cpe:2.3:a:shoplazza:lifestyle:1.1:*:*:*:*:shoplazza:*:* 1 OR
History
Created Old Value New Value Data Type Notes
2022-12-19 16:16:16 Added to TrackCVE
2022-12-21 07:03:07 2022-12-18T11:15:10.647 2022-12-18T11:15:10 CVE Published Date updated
2022-12-21 07:03:07 2022-12-19T02:27:34 CVE Modified Date updated
2022-12-21 07:03:07 Awaiting Analysis Undergoing Analysis Vulnerability Status updated
2022-12-22 17:15:27 2022-12-22T16:48:54 CVE Modified Date updated
2022-12-22 17:15:28 Undergoing Analysis Analyzed Vulnerability Status updated
2022-12-22 17:15:30 Weakness Enumeration update
2022-12-22 17:15:31 CPE Information updated