CVE-2022-42097

Description

Backdrop CMS version 1.23.0 was discovered to contain a stored cross-site scripting (XSS) vulnerability via 'Comment.' .

Related CPE's

abackdropcmsbackdrop1.23.0*******

References

https://github.com/bypazs/CVE-2022-42097

ExploitThird Party Advisory

https://grimthereaperteam.medium.com/cve-2022-42097-backdrop-xss-at-comments-2ea536ec55e1

ExploitThird Party Advisory

https://backdropcms.org

ProductVendor Advisory

https://github.com/backdrop/backdrop/releases/tag/1.23.0

Release NotesThird Party Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics
Created by Yello
About Severity.io