CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-40365

Cross site scripting (XSS) vulnerability in ouqiang gocron through 1.5.3, allows attackers to execute arbitrary code via scope.row.hostname in web/vue/src/pages/taskLog/list.vue.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 59.3%

CVSS Severity

CVSS v3 Score 6.1

References

https://github.com/ouqiang/gocron
https://github.com/ouqiang/gocron/issues/362
https://github.com/ouqiang/gocron
https://github.com/ouqiang/gocron/issues/362

Products affected by CVE-2022-40365

Gocron Project » Gocron » Version: 1.5.3

cpe:2.3:a:gocron_project:gocron:1.5.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-40365

Products

Pricing

Contact Us