Vulnerability Details CVE-2022-2218
Cross-site Scripting (XSS) - Stored in GitHub repository ionicabizau/parse-url prior to 7.0.0.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 57.2%
CVSS Severity
CVSS v3 Score 9.1
CVSS v2 Score 4.3
References
- https://github.com/ionicabizau/parse-url/commit/21c72ab9412228eea753e2abc48f8962707b1fe3
- https://huntr.dev/bounties/024912d3-f103-4daf-a1d0-567f4d9f2bf5
- https://github.com/ionicabizau/parse-url/commit/21c72ab9412228eea753e2abc48f8962707b1fe3
- https://huntr.dev/bounties/024912d3-f103-4daf-a1d0-567f4d9f2bf5
Products affected by CVE-2022-2218
-
cpe:2.3:a:parse-url_project:parse-url:3.0.0
-
cpe:2.3:a:parse-url_project:parse-url:3.0.1
-
cpe:2.3:a:parse-url_project:parse-url:3.0.2
-
cpe:2.3:a:parse-url_project:parse-url:4.0.0
-
cpe:2.3:a:parse-url_project:parse-url:5.0.0
-
cpe:2.3:a:parse-url_project:parse-url:5.0.1
-
cpe:2.3:a:parse-url_project:parse-url:5.0.2
-
cpe:2.3:a:parse-url_project:parse-url:5.0.3
-
cpe:2.3:a:parse-url_project:parse-url:5.0.5
-
cpe:2.3:a:parse-url_project:parse-url:5.0.6
-
cpe:2.3:a:parse-url_project:parse-url:5.0.8
-
cpe:2.3:a:parse-url_project:parse-url:6.0.0
-
cpe:2.3:a:parse-url_project:parse-url:6.0.1