CVE-2022-47419: Mayan EDMS DMS XSS vulnerability
(updated )
An XSS vulnerability was discovered in the Mayan EDMS DMS. Successful XSS exploitation was observed in the in-product tagging system.
References
- github.com/advisories/GHSA-5m6v-2xgf-qhrw
- github.com/mayan-edms/Mayan-EDMS
- github.com/pypa/advisory-database/tree/main/vulns/mayan-edms/PYSEC-2023-276.yaml
- nvd.nist.gov/vuln/detail/CVE-2022-47419
- www.mayan-edms.com/news/2023/02/version-4.3.6
- www.rapid7.com/blog/post/2023/02/07/multiple-dms-xss-cve-2022-47412-through-cve-20222-47419
Code Behaviors & Features
Detect and mitigate CVE-2022-47419 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →