Medium severity5.4NVD Advisory· Published Sep 29, 2022· Updated Jun 17, 2026
CVE-2022-3355
CVE-2022-3355
Description
Cross-site Scripting (XSS) - Stored in GitHub repository inventree/inventree prior to 0.8.3.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
inventreePyPI | < 0.8.3 | 0.8.3 |
Affected products
2- Range: unspecified
Patches
Vulnerability mechanics
References
5- github.com/inventree/inventree/commit/5a08ef908dd5344b4433436a4679d122f7f99e41nvdPatchThird Party AdvisoryWEB
- huntr.dev/bounties/4b7fb92c-f06b-4bbf-82dc-9f013b30b6a6nvdExploitPatchThird Party AdvisoryWEB
- github.com/advisories/GHSA-62g7-fpv9-v95fghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2022-3355ghsaADVISORY
- github.com/inventree/InvenTree/releases/tag/0.8.3ghsaWEB
News mentions
0No linked articles in our index yet.