VYPR
Unrated severityNVD Advisory· Published Apr 1, 2022· Updated Aug 3, 2024

CVE-2022-26565

CVE-2022-26565

Description

A cross-site scripting (XSS) vulnerability in Totaljs all versions before commit 95f54a5commit, allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Page Name text field when creating a new page.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Totaljs/Totaljsdescription
  • Totaljs/CMSllm-fuzzy
    Range: <= commit 95f54a5

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.