Sismics Docs vulnerabilities
2 known vulnerabilities affecting sismics/docs.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2
Vulnerabilities
Page 1 of 1
CVE-2022-22114P3CRITICALCVSS 9.6≥ v1.5, < unspecified≥ unspecified, ≤ v1.92022-01-10
CVE-2022-22114 [CRITICAL] CWE-79 CVE-2022-22114: In Teedy, versions v1.5 through v1.9 are vulnerable to Reflected Cross-Site Scripting (XSS). The “se
In Teedy, versions v1.5 through v1.9 are vulnerable to Reflected Cross-Site Scripting (XSS). The “search term" search functionality is not sufficiently sanitized while displaying the results of the search, which can be leveraged to inject arbitrary scripts. These scripts are executed in a victim’s browser when they enter the crafted URL. In the wor
nvd
CVE-2022-22115P3CRITICALCVSS 9.0≥ v1.5, < unspecified≥ unspecified, ≤ v1.92022-01-10
CVE-2022-22115 [CRITICAL] CWE-79 CVE-2022-22115: In Teedy, versions v1.5 through v1.9 are vulnerable to Stored Cross-Site Scripting (XSS) in the name
In Teedy, versions v1.5 through v1.9 are vulnerable to Stored Cross-Site Scripting (XSS) in the name of a created Tag. Since the Tag name is not being sanitized properly in the edit tag page, a low privileged attacker can store malicious scripts in the name of the Tag. In the worst case, the victim who inadvertently triggers the attack is a highly
nvd