CVE-2022-25220

Published March 3rd, 2022

View on NVD ↗

CVSS v3

4.8

MEDIUM

CVSS v2

3.5

LOW

Affected

PROJECT

Description

PeteReport Version 0.5 allows an authenticated admin user to inject persistent JavaScript code inside the markdown descriptions while creating a product, report or finding.

1modm/petereport

PeTeReport is an open-source application vulnerability reporting tool.

GitHub

502