Medium severity5.4NVD Advisory· Published Dec 15, 2022· Updated Jun 17, 2026
CVE-2022-45033
CVE-2022-45033
Description
A cross-site scripting (XSS) vulnerability in Expense Tracker 1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Chat text field.
Affected products
2- Expense Tracker/Expense Trackerdescription
- Range: = 1.0
Patches
Vulnerability mechanics
References
1- github.com/cyb3r-n3rd/cve-request/blob/main/cve-poc-payloadnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.