CVE-2022-23378

Published
View on NVD ↗
CVSS v3
5.4
MEDIUM
CVSS v2
3.5
LOW
Affected
1
PROJECT

Description

A Cross-Site Scripting (XSS) vulnerability exists within the 3.2.2 version of TastyIgniter. The "items%5B0%5D%5Bpath%5D" parameter of a request made to /admin/allergens/edit/1 is vulnerable.

TheGetch/CVE-2022-23378
TheGetch/CVE-2022-23378
Authenticated reflected XSS in TastyIgniter version v3.2.2.
GitHubGitHub