A vulnerability classified as problematic was found in nuxsmin sysPass up to 3.2.4. Affected by this vulnerability is an unknown functionality of the component URL Handler. The manipulation leads to cross site scripting. The attack can be launched remotely. Upgrading to version 3.2.5 is able to address this issue. The patch is named 4da4d031732ecca67519851fd0c34597dbb8ee55. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-222319.
References
Link | Resource |
---|---|
https://github.com/nuxsmin/sysPass/commit/4da4d031732ecca67519851fd0c34597dbb8ee55 | Patch |
https://github.com/nuxsmin/sysPass/pull/1832 | Patch |
https://github.com/nuxsmin/sysPass/releases/tag/3.2.5 | Release Notes |
https://vuldb.com/?ctiid.222319 | Permissions Required |
https://vuldb.com/?id.222319 | Permissions Required |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: VulDB
Published: 2023-03-06T15:31:04.748Z
Updated: 2023-10-20T14:39:19.640Z
Reserved: 2023-03-04T10:39:03.173Z
Link: CVE-2022-4930
JSON object: View
NVD Information
Status : Modified
Published: 2023-03-06T16:15:09.593
Modified: 2024-05-17T02:17:03.540
Link: CVE-2022-4930
JSON object: View
Redhat Information
No data.
CWE