Unrated severityNVD Advisory· Published Oct 27, 2022· Updated May 7, 2025
CVE-2022-42991
CVE-2022-42991
Description
A stored cross-site scripting (XSS) vulnerability in Simple Online Public Access Catalog v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Edit Account Full Name field.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Simple Online Public Access Catalog/Simple Online Public Access Catalogdescription
- Range: =1.0
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.