Filtered by vendor Tastyigniter
Subscribe
Total
4 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2022-38256 | 1 Tastyigniter | 1 Tastyigniter | 2024-02-28 | N/A | 5.4 MEDIUM |
TastyIgniter v3.5.0 was discovered to contain a cross-site scripting (XSS) vulnerability which allows attackers to execute arbitrary web scripts or HTML via a crafted payload. | |||||
CVE-2022-0602 | 1 Tastyigniter | 1 Tastyigniter | 2024-02-28 | 3.5 LOW | 5.4 MEDIUM |
Cross-site Scripting (XSS) - DOM in GitHub repository tastyigniter/tastyigniter prior to 3.3.0. | |||||
CVE-2022-23378 | 1 Tastyigniter | 1 Tastyigniter | 2024-02-28 | 3.5 LOW | 5.4 MEDIUM |
A Cross-Site Scripting (XSS) vulnerability exists within the 3.2.2 version of TastyIgniter. The "items%5B0%5D%5Bpath%5D" parameter of a request made to /admin/allergens/edit/1 is vulnerable. | |||||
CVE-2021-38699 | 1 Tastyigniter | 1 Tastyigniter | 2024-02-28 | 3.5 LOW | 5.4 MEDIUM |
TastyIgniter 3.0.7 allows XSS via /account, /reservation, /admin/dashboard, and /admin/system_logs. |