Vulnerability Database
Blog
FAQ
Docs
GHSA-hv6q-5g4f-8897
Source
https://github.com/advisories/GHSA-hv6q-5g4f-8897
Import Source
https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/06/GHSA-hv6q-5g4f-8897/GHSA-hv6q-5g4f-8897.json
Aliases
CVE-2022-2079
Published
2022-06-15T00:00:24Z
Modified
2023-11-08T04:08:03.609945Z
Details
Cross-site Scripting (XSS) - Stored in GitHub repository nocodb/nocodb prior to 0.91.9.
References
https://nvd.nist.gov/vuln/detail/CVE-2022-2079
https://github.com/nocodb/nocodb/issues/2262
https://github.com/nocodb/nocodb/pull/2343
https://github.com/nocodb/nocodb/commit/362f8f0869989bc13bdcd66c6fc9c86ac79b9992
https://github.com/nocodb/nocodb
https://github.com/nocodb/nocodb/releases
https://huntr.dev/bounties/2615adf2-ff40-4623-97fb-2e4a3800202a
Affected packages
npm
/
nocodb
Package
Name
nocodb
Affected ranges
Type
SEMVER
Events
Introduced
0
The exact introduced commit is unknown
Fixed
0.91.9
GHSA-hv6q-5g4f-8897 - OSV