CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-45049

A reflected XSS vulnerability has been found in Axiell Iguana CMS, allowing an attacker to execute code in a victim's browser. The url parameter on the novelist.php endpoint does not properly neutralise user input, resulting in the vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 63.4%

CVSS Severity

CVSS v3 Score 6.1

References

https://csirt.divd.nl/CVE-2022-45049/
https://csirt.divd.nl/DIVD-2022-00064/
https://csirt.divd.nl/CVE-2022-45049/
https://csirt.divd.nl/DIVD-2022-00064/

Products affected by CVE-2022-45049

Axiell » Iguana » Version: 4.0.0

cpe:2.3:a:axiell:iguana:4.0.0
Linux » Linux Kernel » Version: N/A

cpe:2.3:o:linux:linux_kernel:-
Microsoft » Windows » Version: N/A

cpe:2.3:o:microsoft:windows:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-45049

Products

Pricing

Contact Us