Medium severity5.4NVD Advisory· Published Nov 17, 2022· Updated Jun 17, 2026
CVE-2022-42960
CVE-2022-42960
Description
EqualWeb Accessibility Widget 2.0.0, 2.0.1, 2.0.2, 2.0.3, 2.0.4, 2.1.10, 3.0.0, 3.0.1, 3.0.2, 4.0.0, and 4.0.1 allows DOM XSS due to improper validation of message events to accessibility.js.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- EqualWeb/Accessibility Widgetdescription
- Range: <=4.0.1
Patches
Vulnerability mechanics
References
1- www.imperva.com/blog/vulnerability-discovered-in-equalweb-accessibility-widget/nvdThird Party Advisory
News mentions
0No linked articles in our index yet.