Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2022-4729

Опубликовано: 27 дек. 2022
Источник: debian

Описание

A vulnerability was found in Graphite Web and classified as problematic. This issue affects some unknown processing of the component Template Name Handler. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The name of the patch is 2f178f490e10efc03cd1d27c72f64ecab224eb23. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-216743.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
graphite-webfixed1.1.8-1.1package

Примечания

  • https://github.com/graphite-project/graphite-web/commit/2f178f490e10efc03cd1d27c72f64ecab224eb23

  • https://github.com/graphite-project/graphite-web/issues/2745

  • https://github.com/graphite-project/graphite-web/pull/2785

Связанные уязвимости

ubuntu логотип

CVE-2022-4729

CVSS3: 3.5
ubuntu
около 3 лет назад

A vulnerability was found in Graphite Web and classified as problematic. This issue affects some unknown processing of the component Template Name Handler. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The name of the patch is 2f178f490e10efc03cd1d27c72f64ecab224eb23. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-216743.

redhat логотип

CVE-2022-4729

CVSS3: 5.4
redhat
около 3 лет назад

A vulnerability was found in Graphite Web and classified as problematic. This issue affects some unknown processing of the component Template Name Handler. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The name of the patch is 2f178f490e10efc03cd1d27c72f64ecab224eb23. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-216743.

nvd логотип

CVE-2022-4729

CVSS3: 3.5
nvd
около 3 лет назад

A vulnerability was found in Graphite Web and classified as problematic. This issue affects some unknown processing of the component Template Name Handler. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The name of the patch is 2f178f490e10efc03cd1d27c72f64ecab224eb23. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-216743.

github логотип

GHSA-q99p-78hp-xg5c

CVSS3: 5.4
github
около 3 лет назад

Graphite Web Cross-site Scripting vulnerability