CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Fava Project: >> Fava Security Vulnerabilities

CVE-2022-2589

Cross-site Scripting (XSS) - Reflected in GitHub repository beancount/fava prior to 1.22.3.

CVSS Score

6.9

EPSS Score

0.001

Published

2022-08-01

CVE-2022-2514

The time and filter parameters in Fava prior to v1.22 are vulnerable to reflected XSS due to the lack of escaping of error messages which contained the parameters in verbatim.

CVSS Score

8.0

EPSS Score

0.001

Published

2022-07-25

CVE-2022-2523

Cross-site Scripting (XSS) - Reflected in GitHub repository beancount/fava prior to 1.22.2.

CVSS Score

8.0

EPSS Score

0.001

Published

2022-07-25

Page 1

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved