CVE-2022-4525

Source
https://cve.org/CVERecord?id=CVE-2022-4525
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-4525.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2022-4525
Published
2022-12-15T00:00:00Z
Modified
2026-07-08T06:03:24.324176130Z
Severity
  • 3.5 (Low) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N CVSS Calculator
Summary
National Sleep Research Resource sleepdata.org cross site scripting
Details

A vulnerability has been found in National Sleep Research Resource sleepdata.org up to 58.x and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting. The attack can be launched remotely. Upgrading to version 59.0.0.rc is able to address this issue. The name of the patch is da44a3893b407087829b006d09339780919714cd. It is recommended to upgrade the affected component. The identifier VDB-215905 was assigned to this vulnerability.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/4xxx/CVE-2022-4525.json",
    "cna_assigner": "VulDB",
    "cwe_ids": [
        "CWE-79"
    ]
}
References

Affected packages

Git / github.com/nsrr/sleepdata.org

Affected ranges

Type
GIT
Repo
https://github.com/nsrr/sleepdata.org
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
Fixed
Database specific
{
    "source": [
        "CPE_RANGE",
        "REFERENCES"
    ],
    "cpe": "cpe:2.3:a:sleepdata:sleepdata:*:*:*:*:*:*:*:*",
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "58.0.0"
        }
    ]
}

Affected versions

58.*
58.x
v0.*
v0.1.0
v0.11.0
v0.11.1
v0.12.0
v0.13.0
v0.14.0
v0.14.2
v0.15.0
v0.15.1
v0.15.2
v0.15.3
v0.16.0
v0.16.0.beta1
v0.16.0.beta2
v0.16.1
v0.17.0
v0.17.0.rc
v0.17.0.rc2
v0.17.1
v0.17.2
v0.17.3
v0.17.3.rc
v0.17.3.rc2
v0.18.0
v0.18.0.beta1
v0.18.1
v0.18.2
v0.2.0
v0.24.0
v0.24.0.rc
v0.24.1
v0.24.2
v0.25.0
v0.25.0.beta1
v0.25.0.beta2
v0.25.0.rc
v0.25.1
v0.26.0
v0.26.0.beta1
v0.26.0.beta2
v0.26.0.rc
v0.26.0.rc2
v0.26.0.rc3
v0.26.0.rc4
v0.26.0.rc5
v0.26.1
v0.26.1.rc
v0.26.2
v0.26.3
v0.27.0
v0.27.0.beta1
v0.27.0.beta2
v0.27.0.beta3
v0.27.0.beta4
v0.27.0.rc
v0.27.0.rc2
v0.28.0
v0.28.0.beta1
v0.28.0.beta2
v0.28.0.rc
v0.29.0
v0.29.0.beta1
v0.29.0.beta2
v0.3.0
v0.30.0.beta1
v0.30.0.beta2
v0.30.0.beta3
v0.30.0.beta4
v0.30.0.beta5
v0.4.0
v0.5.0
v0.6.0
v0.6.1
v0.7.0
v0.7.1
v0.7.2
v0.7.3
v0.8.0
v0.8.1
v0.9.0
v0.9.1
v0.9.2
v0.9.3
v0.9.4
v0.9.5
v0.9.6
v30.*
v30.0.0
v30.0.0.beta6
v30.0.0.rc
v30.0.0.rc2
v30.1.0
v30.1.0.beta1
v31.*
v31.0.0
v31.0.1
v32.*
v32.0.0
v32.0.0.beta1
v32.0.0.beta2
v32.0.0.beta3
v33.*
v33.0.0
v33.0.0.beta1
v33.0.0.beta2
v33.0.0.beta3
v33.0.0.beta4
v33.0.0.rc
v33.0.1
v34.*
v34.0.0
v34.0.0.beta1
v34.0.0.beta2
v34.0.0.beta3
v34.0.0.rc
v34.0.0.rc2
v34.1.0
v35.*
v35.0.0
v35.0.0.rc
v35.0.1
v36.*
v36.0.0
v36.0.0.rc
v36.0.0.rc2
v37.*
v37.0.0
v37.0.0.rc
v38.*
v38.0.0
v38.0.0.beta1
v38.0.0.rc
v39.*
v39.0.0
v39.0.0.rc
v39.0.1
v40.*
v40.0.0
v40.0.0.rc
v40.0.1
v41.*
v41.0.0
v42.*
v42.0.0
v42.0.0.rc
v42.0.1
v42.0.2
v43.*
v43.0.0
v44.*
v44.0.0
v45.*
v45.0.0
v46.*
v46.0.0
v47.*
v47.0.0
v48.*
v48.0.0
v48.1.0
v48.1.1
v49.*
v49.0.0
v50.*
v50.0.0
v51.*
v51.0.0
v51.1.0
v51.2.0
v52.*
v52.0.0
v53.*
v53.0.0
v53.0.0.beta1
v54.*
v54.0.0
v54.0.0.beta1
v55.*
v55.0.0
v56.*
v56.0.0
v57.*
v57.0.0
v57.1.0
v57.2.0
v57.2.1
v58.*
v58.0.0

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-4525.json"