Moderate severityNVD Advisory· Published Oct 11, 2022· Updated May 20, 2025
CVE-2022-41376
CVE-2022-41376
Description
Metro UI v4.4.0 to v4.5.0 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the Javascript function.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
metro4npm | >= 4.4.0, <= 4.5.1 | — |
Affected products
2- Metro UI/Metro UIdescription
Patches
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- github.com/advisories/GHSA-633r-r4p8-pw3wghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2022-41376ghsaADVISORY
- alicangonullu.org/konu/138ghsaWEB
- youtu.be/_wzGVpX54RcghsaWEB
News mentions
0No linked articles in our index yet.