VDB
CVE-2022-4729
CVE-2022-4729
PUBLISHED
CVSS 3.5 LOW
Graphite Web Cross-site Scripting vulnerability
EPSS 0.18% · 39.4th percentile
Risk Scores
CVSS 3.1
3.5
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
EPSS Score
0.18%
39.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Graphite | Web | n/a |
| graphite_project | graphite | |
| PyPI | graphite-web | 0 |
Exploit Intelligence
Timeline
- Dec 24, 2022 CVE Published
- Dec 25, 2022 EPSS Score
- Feb 4, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Mar 18, 2023 EPSS Score
- Apr 28, 2023 EPSS Score
- Jun 9, 2023 EPSS Score
- Jul 20, 2023 EPSS Score
- Aug 31, 2023 EPSS Score
- Oct 11, 2023 EPSS Score
- Nov 22, 2023 EPSS Score
- Jan 2, 2024 EPSS Score
References
- https://github.com/graphite-project/graphite-web/pull/2785 url
- https://github.com/graphite-project/graphite-web/commit/2f178f490e10efc03cd1d27c72f64ecab224eb23 url
- https://github.com/graphite-project/graphite-web/issues/2745 url
- https://vuldb.com/?id.216743 url
- https://nvd.nist.gov/vuln/detail/CVE-2022-4729 advisory
- https://github.com/graphite-project/graphite-web package