Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2022-48150

EPSS 0.53% · P67
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2022-48150

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Shopware v5.5.10 was discovered to contain a cross-site scripting (XSS) vulnerability via the recovery/install/ URI.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Shopware 跨站脚本漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Shopware是德国Shopware公司的一套开源电子商务软件。 Shopware v5.5.10版本存在安全漏洞,攻击者利用该漏洞可以通过URI recovery/install/进行跨站脚本 (XSS) 攻击 。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2022-48150

#POC DescriptionSource LinkShenlong Link
1I Found the reflected xss vulnerability in shopware 5 .for more details check my poc video https://github.com/sahilop123/-CVE-2022-48150POC Details
2I Found the reflected xss vulnerability in shopware 5 .for more details check my poc video https://github.com/SahilH4ck4you/-CVE-2022-48150POC Details
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2022-48150

登录查看更多情报信息。

Same Patch Batch · n/a · 2023-04-21 · 23 CVEs total

CVE-2023-29911H3C Magic R200 缓冲区错误漏洞
CVE-2021-33589Ribose RNP 安全漏洞
CVE-2023-26100Progress Flowmon 跨站脚本漏洞
CVE-2023-26101Progress Flowmon 路径遍历漏洞
CVE-2023-29575Bento4 安全漏洞
CVE-2023-29905H3C Magic R200 缓冲区错误漏洞
CVE-2023-29906H3C Magic R200 缓冲区错误漏洞
CVE-2023-29907H3C Magic R200 缓冲区错误漏洞
CVE-2023-29908H3C Magic R200 缓冲区错误漏洞
CVE-2023-29909H3C Magic R200 缓冲区错误漏洞
CVE-2023-29910H3C Magic R200 缓冲区错误漏洞
CVE-2023-29924PowerJob 安全漏洞
CVE-2023-29912H3C Magic R200 缓冲区错误漏洞
CVE-2023-29913H3C Magic R200 缓冲区错误漏洞
CVE-2023-29914H3C Magic R200 缓冲区错误漏洞
CVE-2023-29915H3C Magic R200 缓冲区错误漏洞
CVE-2023-29916H3C Magic R200 缓冲区错误漏洞
CVE-2023-29917H3C Magic R200 缓冲区错误漏洞
CVE-2022-47930tss-lib 安全漏洞
CVE-2023-26556tss-lib 安全漏洞

Showing top 20 of 23 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2022-48150

No comments yet

Leave a comment