Description
Amasty Blog 2.10.3 is vulnerable to Cross Site Scripting (XSS) via leave comment functionality.
No analysis available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
EUVD |
EUVD-2022-38388 | Amasty Blog 2.10.3 is vulnerable to Cross Site Scripting (XSS) via leave comment functionality. |
References
| Link | Providers |
|---|---|
| http://amasty.com |
|
| https://github.com/afine-com/CVE-2022-35500 |
|
History
Mon, 28 Apr 2025 20:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2026-07-05T00:08:24.669Z
Reserved: 2022-07-11T00:00:00.000Z
Link: CVE-2022-35500
Updated: 2024-08-03T09:36:44.141Z
Status : Modified
Published: 2022-11-23T02:15:09.670
Modified: 2026-06-17T04:51:53.377
Link: CVE-2022-35500
No data.
OpenCVE Enrichment
No data.
Weaknesses
-
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
EUVD