How severe is CVE-2022-4520?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 6.1 out of 10.

What type of vulnerability is CVE-2022-4520?

This is classified as CWE-707, which is a common weakness in software security.

CVE-2022-4520

MEDIUM Year: 2022

CVSS v3 Score

6.1

Medium

Weakness Type

CWE-707

View all →

Vulnerability Description

A vulnerability was found in WSO2 carbon-registry up to 4.8.11. It has been rated as problematic. Affected by this issue is some unknown functionality of the file components/registry/org.wso2.carbon.registry.search.ui/src/main/resources/web/search/advancedSearchForm-ajaxprocessor.jsp of the component Advanced Search. The manipulation of the argument mediaType/rightOp/leftOp/rightPropertyValue/leftPropertyValue leads to cross site scripting. The attack may be launched remotely. Upgrading to version 4.8.12 is able to address this issue. The name of the patch is 0c827cc1b14b82d8eb86117ab2e43c34bb91ddb4. It is recommended to upgrade the affected component. The identifier of this vulnerability is VDB-215900.

CVE-2020-36608

MEDIUM

CVSS:6.1(Medium)

A vulnerability, which was classified as problematic, has been found in Tribal Systems Zenario CMS. Affected by this issue is some unknown functionality of the file admin_organizer.js of the component...

CWE-7072020

CVE-2020-36621

MEDIUM

CVSS:6.1(Medium)

A vulnerability, which was classified as problematic, has been found in chedabob whatismyudid. Affected by this issue is the function exports.enrollment of the file routes/mobileconfig.js. The manipul...

CWE-7072020

CVE-2020-36626

MEDIUM

CVSS:6.1(Medium)

A vulnerability classified as critical has been found in Modern Tribe Panel Builder Plugin. Affected is the function add_post_content_filtered_to_search_sql of the file ModularContent/SearchFilter.php...

CWE-7072020

CVE-2021-4244

MEDIUM

CVSS:6.1(Medium)

A vulnerability classified as problematic has been found in yikes-inc-easy-mailchimp-extender Plugin up to 6.8.5. This affects an unknown part of the file admin/partials/ajax/add_field_to_form.php. Th...

CWE-7072021

CVE-2021-4251

MEDIUM

CVSS:6.1(Medium)

A vulnerability classified as problematic was found in as. This vulnerability affects the function getFullURL of the file include.cdn.php. The manipulation leads to cross site scripting. The attack ca...

CWE-7072021

CVE-2021-4252

MEDIUM

CVSS:6.1(Medium)

A vulnerability, which was classified as problematic, has been found in WP-Ban. This issue affects the function toggle_checkbox of the file ban-options.php. The manipulation of the argument $_SERVER["...

CWE-7072021

CVE-2022-4520

Vulnerability Description

Related Vulnerabilities

CVE-2020-36608

CVE-2020-36621

CVE-2020-36626

CVE-2021-4244

CVE-2021-4251

CVE-2021-4252