What the vulnerability does
01Description
Cross-site Scripting (XSS) - Generic in GitHub repository octoprint/octoprint prior to 1.8.0.
CVE-2022-1432
HIGH
CVE-2022-1432: Cross-site Scripting (XSS) - Generic in octoprint/octoprint
CVSS base score
7.5/10
CVSS vector
CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
Key dates
02Disclosure timeline
May 18, 2022
CVE published
August 3, 2024
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2022-4882 kaltura mwEmbed Share Plugin share.js cross site scripting
CVE-2025-10138 This-or-That by André Boekhorst <= 1.0.4 - Authenticated (Contributor+) Stored Cross-Site Scripting
CVE-2024-5123 SourceCodester Event Registration System cross site scripting
CVE-2024-7134 LiquidPoll <= 3.3.78 - Unauthenticated Stored Cross-Site Scripting via form_data Parameter
CVE-2025-40709 Cross-Site Scripting (XSS) vulnerability in OpenAtlas by ACDH-CH
