Unrated severityNVD Advisory· Published Mar 29, 2022· Updated Apr 15, 2025
htmly Edit Profile Module cross site scripting
CVE-2022-1087
Description
A vulnerability, which was classified as problematic, has been found in htmly 5.3 whis affects the component Edit Profile Module. The manipulation of the field Title with script tags leads to persistent cross site scripting. The attack may be initiated remotely and requires an authentication. A simple POC has been disclosed to the public and may be used.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- unspecified/htmlyv5Range: 5.3
Patches
Vulnerability mechanics
References
3- github.com/liaojia-99/project/blob/main/htmly/1.mdmitrex_refsource_MISC
- github.com/liaojia-99/project/tree/main/htmlymitrex_refsource_MISC
- vuldb.commitrex_refsource_MISC
News mentions
0No linked articles in our index yet.