CVE-2022-0986

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2022-0986

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-0986.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2022-0986

Published

2022-03-16T12:45:12Z

Modified

2026-03-14T11:22:10.777181Z

Severity

2.4 (Low) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:N/A:N CVSS Calculator

Summary

Reflected Cross-site Scripting (XSS) Vulnerability in hestiacp/hestiacp

Details

Reflected Cross-site Scripting (XSS) Vulnerability in GitHub repository hestiacp/hestiacp prior to 1.5.11.

Database specific

{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/0xxx/CVE-2022-0986.json",
    "cwe_ids": [
        "CWE-79"
    ],
    "cna_assigner": "@huntrdev"
}

References

Affected packages

Git / github.com/hestiacp/hestiacp

Affected ranges

Type: GIT
Repo: https://github.com/hestiacp/hestiacp
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

10579ad3650c721bc6c8108d0375b57d6105f3e3

Affected versions

0.*

0.9.8-28

1.*

1.0.1

1.00.0-190618

1.2.0

1.3.0

1.3.1

1.3.2

1.4.0

1.4.1

1.4.10

1.4.11

1.4.12

1.4.13

1.4.14

1.4.15

1.4.16

1.4.17

1.4.2

1.4.3

1.4.4

1.4.5

1.4.6

1.4.7

1.4.8

1.4.9

1.5.0

1.5.1

1.5.10

1.5.2

1.5.3

1.5.4

1.5.5

1.5.6

1.5.7

1.5.8

1.5.9

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-0986.json"