HTML injection attack is closely related to Cross-site Scripting (XSS). HTML injection uses HTML to deface the page. XSS, as the name implies, injects JavaScript into the page. Both attacks exploit insufficient validation of user input.
References
Link | Resource |
---|---|
https://github.com/microweber/microweber/commit/f20abf30a1d9c1426c5fb757ac63998dc5b92bfc | Patch Third Party Advisory |
https://huntr.dev/bounties/747c2924-95ca-4311-9e69-58ee0fb440a0 | Exploit Issue Tracking Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: @huntrdev
Published: 2022-09-20T13:15:20
Updated: 2022-09-20T13:15:19
Reserved: 2022-09-20T00:00:00
Link: CVE-2022-3245
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-09-20T14:15:09.783
Modified: 2022-09-22T00:12:29.157
Link: CVE-2022-3245
JSON object: View
Redhat Information
No data.