CVE-2022-4957 | librespeed speedtest up to 5.2.4 results/stats.php id cross site scripting

Inserito da Angelo Barbosa | Dic 2, 2023 | CVE

A vulnerability was found in librespeed speedtest up to 5.2.4. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file results/stats.php. The manipulation of the argument id leads to cross site scripting.

This vulnerability is known as CVE-2022-4957. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2022-4957 | librespeed speedtest up to 5.2.4 results/stats.php id cross site scripting

Post correlati

CVE-2023-4976 | PureStorage FlashBlade up to 3.3.10/4.0.6/4.1.8/4.2.2 Management Interface privileges management

CVE-2024-3532 | Campcodes Complete Online Student Management System 1.0 attendance_view.php FirstRecord cross site scripting

CVE-2024-37304 | NuGet Gallery prior 2024.05.28 Autolinks cross site scripting

CVE-2024-39873 | Siemens SINEMA Remote Connect Server up to 3.2 excessive authentication (ssa-381581)