How severe is CVE-2022-0838?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 6.6 out of 10.

What type of vulnerability is CVE-2022-0838?

This is classified as CWE-79, which is a common weakness in software security.

CVE-2022-0838

MEDIUM Year: 2022

CVSS v3 Score

6.6

Medium

CVSS v2 Score

4.3

Medium

Weakness Type

CWE-79

View all →

Vulnerability Description

Cross-site Scripting (XSS) - Reflected in GitHub repository hestiacp/hestiacp prior to 1.5.10.

CVE-2021-3783

MEDIUM

CVSS:6.6(Medium)

yourls is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CWE-792021

CVE-2021-4116

MEDIUM

CVSS:6.6(Medium)

yetiforcecrm is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CWE-792021

CVE-2021-4139

MEDIUM

CVSS:6.6(Medium)

pimcore is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CWE-792021

CVE-2021-4175

MEDIUM

CVSS:6.6(Medium)

livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CWE-792021

CVE-2021-4179

MEDIUM

CVSS:6.6(Medium)

livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CWE-792021

CVE-2022-0262

MEDIUM

CVSS:6.6(Medium)

Cross-site Scripting (XSS) - Stored in Packagist pimcore/pimcore prior to 10.2.7.

CWE-792022

CVE-2022-0838

Vulnerability Description

Related Vulnerabilities

CVE-2021-3783

CVE-2021-4116

CVE-2021-4139

CVE-2021-4175

CVE-2021-4179

CVE-2022-0262