CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-31455

* A cross-site scripting (XSS) vulnerability in Truedesk v1.2.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into a user chat box.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 23.6%

CVSS Severity

CVSS v3 Score 6.1

References

https://medium.com/%40rohitgautam26/cve-2022-31455-bc929f477446
https://www.acunetix.com/vulnerabilities/web/cross-site-scripting/
https://medium.com/%40rohitgautam26/cve-2022-31455-bc929f477446
https://www.acunetix.com/vulnerabilities/web/cross-site-scripting/

Products affected by CVE-2022-31455

Truedesk » Truedesk » Version: 1.2.2

cpe:2.3:a:truedesk:truedesk:1.2.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-31455

Products

Pricing

Contact Us