CVE-2022-40365

Description

Cross site scripting (XSS) vulnerability in ouqiang gocron through 1.5.3, allows attackers to execute arbitrary code via scope.row.hostname in web/vue/src/pages/taskLog/list.vue.

Related CPE's

a gocron_project gocron ********

References

https://github.com/ouqiang/gocron

ProductRelease NotesThird Party Advisory

https://github.com/ouqiang/gocron/issues/362

ExploitIssue TrackingThird Party Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics

Created by Yello

About Severity.io