CVE-2022-4525

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2022-4525

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-4525.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2022-4525

Published

2022-12-15T21:15:13.120Z

Modified

2025-11-20T12:10:48.958641Z

Severity

6.1 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVSS Calculator

Summary

[none]

Details

A vulnerability has been found in National Sleep Research Resource sleepdata.org up to 58.x and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting. The attack can be launched remotely. Upgrading to version 59.0.0.rc is able to address this issue. The name of the patch is da44a3893b407087829b006d09339780919714cd. It is recommended to upgrade the affected component. The identifier VDB-215905 was assigned to this vulnerability.

References

Affected packages

Git / github.com/nsrr/sleepdata.org

Affected ranges

Type: GIT
Repo: https://github.com/nsrr/sleepdata.org
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

459c38c8d99f24e64407264693e8ed9ae6aba1a2

Fixed

da44a3893b407087829b006d09339780919714cd

Affected versions

v0.*

v0.1.0

v0.10.0

v0.11.0

v0.11.1

v0.11.2

v0.12.0

v0.13.0

v0.14.0

v0.14.1

v0.14.2

v0.15.0

v0.15.1

v0.15.2

v0.15.3

v0.16.0

v0.16.0.beta1

v0.16.0.beta2

v0.16.1

v0.17.0

v0.17.0.rc

v0.17.0.rc2

v0.17.1

v0.17.2

v0.17.3

v0.17.3.rc

v0.17.3.rc2

v0.18.0

v0.18.0.beta1

v0.18.1

v0.18.2

v0.18.3

v0.18.4

v0.19.0

v0.19.1

v0.19.2

v0.2.0

v0.20.0

v0.21.0

v0.22.0

v0.23.0

v0.23.0.rc

v0.24.0

v0.24.0.rc

v0.24.1

v0.24.2

v0.25.0

v0.25.0.beta1

v0.25.0.beta2

v0.25.0.rc

v0.25.1

v0.26.0

v0.26.0.beta1

v0.26.0.beta2

v0.26.0.rc

v0.26.0.rc2

v0.26.0.rc3

v0.26.0.rc4

v0.26.0.rc5

v0.26.1

v0.26.1.rc

v0.26.2

v0.26.3

v0.27.0

v0.27.0.beta1

v0.27.0.beta2

v0.27.0.beta3

v0.27.0.beta4

v0.27.0.rc

v0.27.0.rc2

v0.28.0

v0.28.0.beta1

v0.28.0.beta2

v0.28.0.rc

v0.29.0

v0.29.0.beta1

v0.29.0.beta2

v0.29.1

v0.29.2

v0.3.0

v0.30.0.beta1

v0.30.0.beta2

v0.30.0.beta3

v0.30.0.beta4

v0.30.0.beta5

v0.4.0

v0.5.0

v0.6.0

v0.6.1

v0.6.2

v0.7.0

v0.7.1

v0.7.2

v0.7.3

v0.8.0

v0.8.1

v0.9.0

v0.9.1

v0.9.2

v0.9.3

v0.9.4

v0.9.5

v0.9.6

v30.*

v30.0.0

v30.0.0.beta6

v30.0.0.rc

v30.0.0.rc2

v30.1.0

v30.1.0.beta1

v31.*

v31.0.0

v31.0.1

v32.*

v32.0.0

v32.0.0.beta1

v32.0.0.beta2

v32.0.0.beta3

v33.*

v33.0.0

v33.0.0.beta1

v33.0.0.beta2

v33.0.0.beta3

v33.0.0.beta4

v33.0.0.rc

v33.0.1

v34.*

v34.0.0

v34.0.0.beta1

v34.0.0.beta2

v34.0.0.beta3

v34.0.0.rc

v34.0.0.rc2

v34.1.0

v34.2.0

v35.*

v35.0.0

v35.0.0.rc

v35.0.1

v36.*

v36.0.0

v36.0.0.rc

v36.0.0.rc2

v37.*

v37.0.0

v37.0.0.rc

v38.*

v38.0.0

v38.0.0.beta1

v38.0.0.rc

v39.*

v39.0.0

v39.0.0.rc

v39.0.1

v40.*

v40.0.0

v40.0.0.rc

v40.0.1

v41.*

v41.0.0

v42.*

v42.0.0

v42.0.0.rc

v42.0.1

v42.0.2

v43.*

v43.0.0

v44.*

v44.0.0

v45.*

v45.0.0

v46.*

v46.0.0

v47.*

v47.0.0

v48.*

v48.0.0

v48.1.0

v48.1.1

v49.*

v49.0.0

v50.*

v50.0.0

v51.*

v51.0.0

v51.1.0

v51.2.0

v52.*

v52.0.0

v53.*

v53.0.0

v53.0.0.beta1

v54.*

v54.0.0

v54.0.0.beta1

v55.*

v55.0.0

v56.*

v56.0.0

v57.*

v57.0.0

v57.1.0

v57.2.0

v57.2.1

v58.*

v58.0.0

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-4525.json"