Vulnerability Details CVE-2022-34966
OpenTeknik LLC OSSN OPEN SOURCE SOCIAL NETWORK v6.3 LTS was discovered to contain an HTML injection vulnerability via the location parameter at http://ip_address/:port/ossn/home.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.009
EPSS Ranking 74.5%
CVSS Severity
CVSS v3 Score 7.5
References
- https://github.com/opensource-socialnetwork/opensource-socialnetwork/releases/tag/6.3
- https://grimthereaperteam.medium.com/cve-2022-34966-ossn-6-3-lts-html-injection-vulnerability-at-location-parameter-3fe791dd22c6
- https://www.opensource-socialnetwork.org/
- https://www.openteknik.com/contact?channel=ossn
- https://github.com/opensource-socialnetwork/opensource-socialnetwork/releases/tag/6.3
- https://grimthereaperteam.medium.com/cve-2022-34966-ossn-6-3-lts-html-injection-vulnerability-at-location-parameter-3fe791dd22c6
- https://www.opensource-socialnetwork.org/
- https://www.openteknik.com/contact?channel=ossn
Products affected by CVE-2022-34966
-
cpe:2.3:a:openteknik:open_source_social_network:6.3