CVE-2022-4736

CVSS V2 None CVSS V3 None

Description

A vulnerability was found in Venganzas del Pasado and classified as problematic. Affected by this issue is some unknown functionality. The manipulation of the argument the_title leads to cross site scripting. The attack may be launched remotely. The name of the patch is 62339b2ec445692c710b804bdf07aef4bd247ff7. It is recommended to apply a patch to fix this issue. VDB-216770 is the identifier assigned to this vulnerability.

Overview

CVE ID
CVE-2022-4736

Assigner
cna@vuldb.com

Vulnerability Status
Analyzed

Published Version
2022-12-25T20:15:25

Last Modified Date
2023-01-04T02:06:26

Weakness Enumerations

CWE	URL
CWE-79	http://cwe.mitre.org/data/definitions/79.html

CPE Configuration (Product)

CPE	Vulnerable	Operator	Version Start	Version End
cpe:2.3:a:venganzasdelpasado:venganzas_del_pasado:-:::::::*	1	OR

References

Reference URL	Reference Tags
https://github.com/jschwindt/Venganzas-del-Pasado/commit/62339b2ec445692c710b804bdf07aef4bd247ff7
https://vuldb.com/?ctiid.216770
https://vuldb.com/?id.216770
https://www.openbugbounty.org/reports/3022583/

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2022-4736
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4736

History

Created	Old Value	New Value	Data Type	Notes
2022-12-25 20:15:49				Added to TrackCVE
2022-12-25 20:15:50			Weakness Enumeration	new
2022-12-27 14:15:46		2022-12-27T13:48:11	CVE Modified Date	updated
2022-12-27 14:15:46	Received	Awaiting Analysis	Vulnerability Status	updated
2022-12-27 14:15:49			CVSS V3 information	new
2022-12-30 17:14:33	Awaiting Analysis	Undergoing Analysis	Vulnerability Status	updated
2022-12-30 17:14:34			CVSS V3 information	new
2023-01-04 02:15:20		2023-01-04T02:06:26	CVE Modified Date	updated
2023-01-04 02:15:20	Undergoing Analysis	Analyzed	Vulnerability Status	updated
2023-01-04 02:15:21			CPE Information	updated
2023-01-04 02:15:21			CVSS V3 information	new