CVE-2022-4595

CVSS v3.1

6.1

Medium

Vector

AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions django-openipam (affected versions not specified)

Description A problematic vulnerability has been found in django-openipam, affecting an unknown part of the file openipam/report/templates/report/exposed hosts.html. The manipulation of the description argument leads to cross-site scripting. It is possible to initiate the attack remotely.

Recommendations To fix this issue, it is recommended to apply a patch with the name a6223a1150d60cd036106ba6a8e676c1bfc3cc85. As a temporary workaround, consider restricting the manipulation of the description argument to minimize the risk of exploitation.

Fix

Improper Neutralization

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-707

Related Identifiers

CVE-2022-4595

Affected Products

Django-Openipam

CVE-2022-4595

Weakness Enumeration

Related Identifiers

Affected Products

References · 8