CVE-2022-23051

Published March 3rd, 2022

View on NVD ↗

CVSS v3

5.4

MEDIUM

CVSS v2

3.5

LOW

Affected

PROJECT

Description

PeteReport Version 0.5 allows an authenticated admin user to inject persistent JavaScript code while adding an 'Attack Tree' by modifying the 'svg_file' parameter.

1modm/petereport

PeTeReport is an open-source application vulnerability reporting tool.

GitHub

502