Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2022-41431

xzs v3.8.0 was discovered to contain a cross-site scripting (XSS) vulnerability in the component /admin/question/edit. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Title text field.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 39.3%
CVSS Severity
CVSS v3 Score 5.4
Products affected by CVE-2022-41431
  • Mindskip » Xzs » Version: 3.8.0
    cpe:2.3:a:mindskip:xzs:3.8.0


Contact Us

Shodan ® - All rights reserved