Medium severity6.1NVD Advisory· Published Sep 12, 2022· Updated Jun 17, 2026
CVE-2022-38295
CVE-2022-38295
Description
Cuppa CMS v1.0 was discovered to contain a cross-site scripting vulnerability at /table_manager/view/cu_user_groups. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field under the Add New Group function.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Cuppa CMS/Cuppa CMSdescription
Patches
Vulnerability mechanics
References
1- github.com/CuppaCMS/CuppaCMS/issues/34nvdExploitIssue TrackingThird Party Advisory
News mentions
0No linked articles in our index yet.