CVE-2022-25220

Summary

PeteReport Version 0.5 allows an authenticated admin user to inject persistent JavaScript code inside the markdown descriptions while creating a product, report or finding.

Affected Software

VendorProductVersion RangeStatus
n/aPeTeReport0.5affected

Weaknesses

  • Stored cross-site scripting (XSS)

ADP Enrichment

CVE Program Container

Additional References

References