First published: Thu Aug 18 2022(Updated: )
Ecommerce-CodeIgniter-Bootstrap before commit 56465f was discovered to contain a cross-site scripting (XSS) vulnerability via the function base_url() at /blog/blogpublish.php.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Ecommerce-codeigniter-bootstrap Project Ecommerce-codeigniter-bootstrap | <2021-08-21 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-35213 is a cross-site scripting (XSS) vulnerability in Ecommerce-CodeIgniter-Bootstrap before commit 56465f.
CVE-2022-35213 has a severity value of 6.1, which is considered medium.
CVE-2022-35213 affects Ecommerce-CodeIgniter-Bootstrap versions up to and excluding 2021-08-21.
To fix CVE-2022-35213, it is recommended to update to a version of Ecommerce-CodeIgniter-Bootstrap later than commit 56465f.
Yes, you can find additional information about CVE-2022-35213 in the references provided: [link1](https://github.com/kirilkirkov/Ecommerce-CodeIgniter-Bootstrap/commit/56465fb6a83aaa934a76615a8579100938b790a1) and [link2](https://github.com/kirilkirkov/Ecommerce-CodeIgniter-Bootstrap/issues/219).