Vulnerability CVE-2022-3355
Published: 2022-09-29

Description:
Cross-site Scripting (XSS) - Stored in GitHub repository inventree/inventree prior to 0.8.3.

Type:

CWE-79

 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

 References:
https://huntr.dev/bounties/4b7fb92c-f06b-4bbf-82dc-9f013b30b6a6
https://github.com/inventree/inventree/commit/5a08ef908dd5344b4433436a4679d122f7f99e41
Copyright 2024, cxsecurity.com

 

Back to Top