CVE-2022-42097

Published: Nov 22, 2022
Updated: May 10, 2024
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2022-42097" target="_blank" rel="noopener"> CVE-2022-42097
GHSA: <a href="https://github.com/advisories/GHSA-g9cp-9fw3-56cf" target="_blank" rel="noopener"> GHSA-g9cp-9fw3-56cf
Severity: Low
Exploit:

Backdrop CMS version 1.23.0 was discovered to contain a stored cross-site scripting (XSS) vulnerability via 'Comment.' .

CVSS v3:

CWEs:

OWASP TOP 10:

Software	From	Fixed in
backdropcms / backdrop	1.23.0	1.23.0.x
backdrop / backdrop	-	1.23.0.x