CVE-2022-4353
LinZhaoguan pb-cms IpUtil.getIpAddr cross site scripting
CVSS Score
3.5
EPSS Score
0.0%
EPSS Percentile
0th
A vulnerability has been found in LinZhaoguan pb-cms 2.0 and classified as problematic. Affected by this vulnerability is the function IpUtil.getIpAddr. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-215113 was assigned to this vulnerability.
| CWE | CWE-707 |
| Vendor | linzhaoguan |
| Product | pb-cms |
| Published | Dec 8, 2022 |
| Last Updated | Aug 3, 2024 |
Stay Ahead of the Next One
Get instant alerts for linzhaoguan pb-cms
Be the first to know when new low vulnerabilities affecting linzhaoguan pb-cms are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
CVSS v3 Breakdown
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
Required
Scope
Unchanged
Confidentiality
None
Integrity
Low
Availability
None
Affected Versions
LinZhaoguan / pb-cms
2.0