VYPR
Medium severity6.1NVD Advisory· Published Sep 23, 2022· Updated Jun 17, 2026

CVE-2022-40359

CVE-2022-40359

Description

Cross site scripting (XSS) vulnerability in kfm through 1.4.7 via crafted GET request to /kfm/index.php.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • kfm/kfmdescription
  • kfm/kfmllm-fuzzy
    Range: <=1.4.7

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.