Vesta v1.0.0-5 was discovered to contain a cross-site scripting (XSS) vulnerability via the handle_file_upload function at /web/api/v1/upload/UploadHandler.php.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/serghey-rodin/vesta/issues/2252 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2022-07-19T18:20:01
Updated: 2024-08-03T10:00:04.300Z
Reserved: 2022-07-19T00:00:00
Link: CVE-2022-36303
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-07-19T19:15:10.967
Modified: 2024-11-21T07:12:44.360
Link: CVE-2022-36303
Redhat
No data.