Cipi
1 CVEs
product
Monthly
Cipi 3.1.15 allows Add Server stored XSS via the /api/servers name field. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.
XSS
Cipi
NVD
GitHub
Exploit-DB
CVSS 3.1
5.4
EPSS
0.7%
CVE-2022-26332
PHP
EPSS 1%
CVSS 5.4
MEDIUM
POC
This Month
Cipi 3.1.15 allows Add Server stored XSS via the /api/servers name field. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.
XSS
Cipi
NVD
GitHub
Exploit-DB