CVE-2022-42094

Published: Nov 22, 2022
Updated: May 10, 2024
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2022-42094" target="_blank" rel="noopener"> CVE-2022-42094
GHSA: <a href="https://github.com/advisories/GHSA-vcvg-g8p2-3hqr" target="_blank" rel="noopener"> GHSA-vcvg-g8p2-3hqr
Severity: Low
Exploit:

Backdrop CMS version 1.23.0 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the 'Card' content.

CVSS v3:

CWEs:

OWASP TOP 10:

Software	From	Fixed in
backdropcms / backdrop	1.23.0	1.23.0.x
backdrop / backdrop	-	1.23.0.x