VYPR
Unrated severityNVD Advisory· Published Jan 12, 2023· Updated Apr 8, 2025

CVE-2022-46438

CVE-2022-46438

Description

A cross-site scripting (XSS) vulnerability in the /admin/article_category.php component of DouPHP v1.7 20221118 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the description parameter.

Affected products

2
  • DouPHP/DouPHPdescription
  • Douco/Douphpllm-fuzzy
    Range: = 1.7 (20221118)

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.