CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-34133

Benjamin BALET Jorani v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the Comment parameter at application/controllers/Leaves.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 43.8%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

https://github.com/bbalet/jorani/commit/3d01cef4ee9cdd70cfe1ac4fd7f5d607dda0d0ca
https://github.com/bbalet/jorani/issues/369
https://github.com/bbalet/jorani/commit/3d01cef4ee9cdd70cfe1ac4fd7f5d607dda0d0ca
https://github.com/bbalet/jorani/issues/369

Products affected by CVE-2022-34133

Jorani » Jorani » Version: 1.0.0

cpe:2.3:a:jorani:jorani:1.0.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-34133

Products

Pricing

Contact Us