CVE-2022-4396— RDFlib pyrdfa3 init.py _get_option cross site scripting

CVSS 3.5 · Low EPSS 0.42% · P62 Updated Apr 15, 2025

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2022-4396

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

RDFlib pyrdfa3 __init__.py _get_option cross site scripting

Source: NVD (National Vulnerability Database)

Vulnerability Description

A vulnerability was found in RDFlib pyrdfa3 and classified as problematic. This issue affects the function _get_option of the file pyRdfa/__init__.py. The manipulation leads to cross site scripting. The attack may be initiated remotely. The name of the patch is ffd1d62dd50d5f4190013b39cedcdfbd81f3ce3e. It is recommended to apply a patch to fix this issue. The identifier VDB-215249 was assigned to this vulnerability. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N

Source: NVD (National Vulnerability Database)

Vulnerability Type

对消息或数据结构的处理不恰当

Source: NVD (National Vulnerability Database)

Vulnerability Title

PyRDFA 跨站脚本漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

PyRDFA是RDFLib开源的一个解析器库。可用于生成提取的图形的序列化版本，或简单地生成 RDFLib 图形。 PyRDFA 存在安全漏洞。攻击者利用该漏洞执行跨站脚本攻击。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
RDFlib	pyrdfa3	n/a	-

II. Public POCs for CVE-2022-4396

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2022-4396

请登录查看更多情报信息。

IV. Related Vulnerabilities

Same weakness: CWE-707

V. Comments for CVE-2022-4396

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2022-4396— RDFlib pyrdfa3 init.py _get_option cross site scripting

I. Basic Information for CVE-2022-4396

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2022-4396

III. Intelligence Information for CVE-2022-4396

IV. Related Vulnerabilities

V. Comments for CVE-2022-4396

Leave a comment

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2022-4396— RDFlib pyrdfa3 __init__.py _get_option cross site scripting

I. Basic Information for CVE-2022-4396

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2022-4396

III. Intelligence Information for CVE-2022-4396

IV. Related Vulnerabilities

V. Comments for CVE-2022-4396

Leave a comment

CVE-2022-4396— RDFlib pyrdfa3 init.py _get_option cross site scripting