First published: Tue Jul 19 2022(Updated: )
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Vestacp Vesta Control Panel | =1.0.0-5 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-36303 is a cross-site scripting (XSS) vulnerability found in Vesta v1.0.0-5.
The severity of CVE-2022-36303 is rated as medium with a CVSS score of 6.1.
CVE-2022-36303 affects Vesta Control Panel version 1.0.0-5.
CVE-2022-36303 can be exploited through the handle_file_upload function at /web/api/v1/upload/UploadHandler.php in Vesta v1.0.0-5.
There is currently no patch available for CVE-2022-36303. It is recommended to follow the official GitHub repository for updates.