Cross site scripting (XSS) vulnerability in ouqiang gocron through 1.5.3, allows attackers to execute arbitrary code via scope.row.hostname in web/vue/src/pages/taskLog/list.vue.
References
Link | Resource |
---|---|
https://github.com/ouqiang/gocron | Product Release Notes Third Party Advisory |
https://github.com/ouqiang/gocron/issues/362 | Exploit Issue Tracking Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-09-14T20:06:43
Updated: 2022-09-14T20:06:43
Reserved: 2022-09-11T00:00:00
Link: CVE-2022-40365
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-09-14T21:15:10.583
Modified: 2022-09-16T19:27:25.667
Link: CVE-2022-40365
JSON object: View
Redhat Information
No data.
CWE