CVE-2022-23077

Published June 22nd, 2022

View on NVD ↗

CVSS v3

6.1

MEDIUM

CVSS v2

4.3

MEDIUM

Affected

1

PROJECT

Description

In habitica versions v4.119.0 through v4.232.2 are vulnerable to DOM XSS via the login page.

HabitRPG/habitica

A habit tracker app which treats your goals like a Role Playing Game.

GitHub

13.9K