CVE-2022-40034

Description

Cross-Site Scripting (XSS) vulnerability found in Rawchen blog-ssm v1.0 allows attackers to execute arbitrary code via the 'notifyInfo' parameter.

Related CPE's

ajavaweb_blog_projectjavaweb_blog1.0*******

References

https://github.com/rawchen/blog-ssm/issues/4

ExploitIssue TrackingThird Party Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics
Created by Yello
About Severity.io