A vulnerability was found in librespeed speedtest up to 5.2.4. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file results/stats.php. The manipulation of the argument id leads to cross site scripting.

This vulnerability is known as CVE-2022-4957. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.