Sign in Subscribe

rpm package

suse/cherrytree&distro=SUSE Package Hub 15 SP4

pkg:rpm/suse/cherrytree&distro=SUSE%20Package%20Hub%2015%20SP4

Vulnerabilities (1)

CVE	Sev	CVSS	KEV	Affected versions	Fixed in	Published	Description
CVE-2022-35133		—		< 0.99.49+3-bp154.2.3.2	0.99.49+3-bp154.2.3.2	Aug 17, 2022	A cross-site scripting (XSS) vulnerability in CherryTree v0.99.30 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name text field when creating a node.

CVE-2022-35133Aug 17, 2022
affected < 0.99.49+3-bp154.2.3.2fixed 0.99.49+3-bp154.2.3.2
A cross-site scripting (XSS) vulnerability in CherryTree v0.99.30 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name text field when creating a node.