Vulnerabilities (CVE)

Filtered by vendor Tastyigniter Subscribe
Total 4 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-38256 1 Tastyigniter 1 Tastyigniter 2024-02-28 N/A 5.4 MEDIUM
TastyIgniter v3.5.0 was discovered to contain a cross-site scripting (XSS) vulnerability which allows attackers to execute arbitrary web scripts or HTML via a crafted payload.
CVE-2022-0602 1 Tastyigniter 1 Tastyigniter 2024-02-28 3.5 LOW 5.4 MEDIUM
Cross-site Scripting (XSS) - DOM in GitHub repository tastyigniter/tastyigniter prior to 3.3.0.
CVE-2022-23378 1 Tastyigniter 1 Tastyigniter 2024-02-28 3.5 LOW 5.4 MEDIUM
A Cross-Site Scripting (XSS) vulnerability exists within the 3.2.2 version of TastyIgniter. The "items%5B0%5D%5Bpath%5D" parameter of a request made to /admin/allergens/edit/1 is vulnerable.
CVE-2021-38699 1 Tastyigniter 1 Tastyigniter 2024-02-28 3.5 LOW 5.4 MEDIUM
TastyIgniter 3.0.7 allows XSS via /account, /reservation, /admin/dashboard, and /admin/system_logs.