leads to a cross site scripting. The attack can be initiated remotely but requires an authentication. The exploit details have disclosed to the public and may be used.", "datePublished": "2022-04-29T13:10:12Z", "dateModified": "2025-04-15T14:40:54Z", "keywords": "CVE-2022-1536, vulnerability, CVE, security, automad, unspecified", "about": { "@type": "SoftwareApplication", "name": "automad", "applicationCategory": "SecurityApplication", "operatingSystem": "All" } }</script> <main> <!-- ── HERO ─────────────────────────────────────────────────────────────── --> <section class="detail-hero"> <div class="container"> <header class="nav-wrap"> <nav> <a class="brand" href="/" aria-label="AskarLabs home"> <img src="https://askarlabs.b-cdn.net/images/logo-dark.png" alt="AskarLabs" class="block md:hidden" style="height:36px;width:auto;"> <img src="https://askarlabs.b-cdn.net/images/logo-full-light.png" alt="AskarLabs" class="hidden md:block" style="height:36px;width:auto;"> </a> <div class="nav-links hidden md:flex"> <a href="/" >Home</a> <span class="has-mega"> <button class="mega-trigger" type="button" aria-haspopup="true" aria-expanded="false"> Products <svg class="chevron" aria-hidden="true" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round"> <path d="m6 9 6 6 6-6" /> </svg> </button> <div class="mega" role="menu" aria-label="Products"> <div> <p class="mega-col-label">CMS Security</p> <a class="mega-item" role="menuitem" href="/vscan"> <span class="mega-icon" aria-hidden="true">vs</span> <span class="mega-text"> <span class="mega-name">vScan</span> <span class="mega-desc">Continuous CMS vulnerability scanning</span> </span> </a> <a class="mega-item" role="menuitem" href="/wpaudit"> <span class="mega-icon" aria-hidden="true">wa</span> <span class="mega-text"> <span class="mega-name">WP-Audit</span> <span class="mega-desc">Wordpress Security Audit Tool</span> </span> </a> </div> <div> <p class="mega-col-label">Identity & Access</p> <a class="mega-item" target="_blank" role="menuitem" href="https://passwordlab.io"> <span class="mega-icon" aria-hidden="true">pl</span> <span class="mega-text"> <span class="mega-name">PasswordLab</span> <span class="mega-desc">Self-hosted password manager for business</span> </span> </a> </div> </div> </span> <a href="/docs" >Docs</a> <span class="has-mega active"> <button class="mega-trigger" type="button" aria-haspopup="true" aria-expanded="false"> CVE Database <svg class="chevron" aria-hidden="true" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round"> <path d="m6 9 6 6 6-6" /> </svg> </button> <div class="mega" role="menu" aria-label="CVE Database"> <div> <p class="mega-col-label">Browse</p> <a class="mega-item" role="menuitem" href="/cve/"> <span class="mega-icon" aria-hidden="true">all</span> <span class="mega-text"> <span class="mega-name">All CVEs</span> <span class="mega-desc">Full database, no filters</span> </span> </a> <a class="mega-item" role="menuitem" href="/cve/woocommerce/"> <span class="mega-icon" aria-hidden="true">wp</span> <span class="mega-text"> <span class="mega-name">WooCommerce CVEs</span> <span class="mega-desc">Plugins</span> </span> </a> <a class="mega-item" role="menuitem" href="/cve/elementor/"> <span class="mega-icon" aria-hidden="true">wp</span> <span class="mega-text"> <span class="mega-name">Elementor CVEs</span> <span class="mega-desc">Plugins</span> </span> </a> </div> <div> <p class="mega-col-label">By Platform</p> <a class="mega-item" role="menuitem" href="/cve/wordpress/"> <span class="mega-icon" aria-hidden="true">wp</span> <span class="mega-text"> <span class="mega-name">WordPress CVEs</span> <span class="mega-desc">Plugins, themes & core</span> </span> </a> <a class="mega-item" role="menuitem" href="/cve/joomla/"> <span class="mega-icon" aria-hidden="true">jm</span> <span class="mega-text"> <span class="mega-name">Joomla CVEs</span> <span class="mega-desc">Extensions & core</span> </span> </a> <a class="mega-item" role="menuitem" href="/cve/drupal/"> <span class="mega-icon" aria-hidden="true">dr</span> <span class="mega-text"> <span class="mega-name">Drupal CVEs</span> <span class="mega-desc">Modules & core</span> </span> </a> </div> </div> </span> </div> <a class="btn-ghost hidden md:inline-flex" type="button" href="/contact" style="border-radius: 8px">Talk to us</a> <button class="nav-toggle flex md:hidden justify-self-end" type="button" aria-label="Open menu" aria-expanded="false" id="navToggle"> <svg aria-hidden="true" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round"> <line x1="4" y1="7" x2="20" y2="7" /> <line x1="4" y1="12" x2="20" y2="12" /> <line x1="4" y1="17" x2="20" y2="17" /> </svg> </button> </nav> </header> <div id="detailHeroContent"> <nav class="detail-crumbs" aria-label="Breadcrumb"> <a href="/">Home</a> <span class="sep" aria-hidden="true">/</span> <a href="/cve/">CVE Database</a> <span class="sep" aria-hidden="true">/</span> <span class="here">CVE-2022-1536</span> </nav> <div class="detail-hero-grid gap-6 xl:gap-12 xl:grid-cols-[1fr_340px]"> <!-- Left: identity + meta + actions --> <div> <div class="detail-id-row"> <span class="detail-cve-id-badge">CVE-2022-1536</span> <span class="sev-badge low"> <span class="d" aria-hidden="true"></span>LOW </span> </div> <h1 class="detail-title" style="max-width: 100%;"> CVE-2022-1536: automad Dashboard cross site scripting </h1> <div class="detail-meta-row"> <div class="detail-meta-item"> <span class="detail-meta-lbl">Vendor</span> <span class="detail-meta-v">Unspecified</span> </div> <div class="detail-meta-item"> <span class="detail-meta-lbl">Product</span> <span class="detail-meta-v">automad</span> </div> <div class="detail-meta-item"> <span class="detail-meta-lbl">Weakness</span> <span class="detail-meta-v">CWE-79 · XSS</span> </div> <div class="detail-meta-item"> <span class="detail-meta-lbl">Published</span> <span class="detail-meta-v">April 29, 2022</span> </div> <div class="detail-meta-item"> <span class="detail-meta-lbl">Last update</span> <span class="detail-meta-v">April 15, 2025</span> </div> </div> <div class="detail-actions"> <button class="detail-action-btn" id="detailCopyBtn" type="button" data-cve-id="CVE-2022-1536"> <svg width="13" height="13" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2.2" stroke-linecap="round" stroke-linejoin="round" aria-hidden="true"><rect x="9" y="9" width="13" height="13" rx="2"/><path d="M5 15V5a2 2 0 0 1 2-2h10"/></svg> <span id="detailCopyLabel">Copy CVE ID</span> </button> <a class="detail-action-btn" href="https://nvd.nist.gov/vuln/detail/CVE-2022-1536" target="_blank" rel="noopener noreferrer"> <svg width="13" height="13" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2.2" stroke-linecap="round" stroke-linejoin="round" aria-hidden="true"><path d="M7 17 17 7"/><path d="M8 7h9v9"/></svg> View on NVD </a> <a class="detail-action-btn" href="/cve/"> <svg width="13" height="13" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2.2" stroke-linecap="round" stroke-linejoin="round" aria-hidden="true"><polyline points="15 18 9 12 15 6"/></svg> All CVEs </a> </div> </div> <!-- Right: score card --> <div class="detail-score-card"> <div class="detail-score-head"> <div> <p class="detail-score-lbl">CVSS base score</p> <div class="detail-score-num text-[44px] md:text-[56px]"> <span class="detail-score-val low"> 3.5<span class="detail-score-max">/10</span> </span> </div> </div> </div> <div class="detail-metric-bars grid-cols-1 md:grid-cols-2"> <div class="detail-metric"> <div class="detail-metric-top"> <span class="detail-metric-l">Attack vector</span> <span class="detail-metric-chip danger">Network</span> </div> </div> <div class="detail-metric"> <div class="detail-metric-top"> <span class="detail-metric-l">Attack complexity</span> <span class="detail-metric-chip danger">Low</span> </div> </div> <div class="detail-metric"> <div class="detail-metric-top"> <span class="detail-metric-l">Privileges required</span> <span class="detail-metric-chip amber">Low</span> </div> </div> <div class="detail-metric"> <div class="detail-metric-top"> <span class="detail-metric-l">User interaction</span> <span class="detail-metric-chip amber">Required</span> </div> </div> <div class="detail-metric"> <div class="detail-metric-top"> <span class="detail-metric-l">Confidentiality</span> <span class="detail-metric-chip success">None</span> </div> </div> <div class="detail-metric"> <div class="detail-metric-top"> <span class="detail-metric-l">Integrity</span> <span class="detail-metric-chip amber">Low</span> </div> </div> </div> <div class="detail-vector-row"> <p class="detail-vector-lbl">CVSS vector</p> <p class="detail-vector-val">CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N</p> </div> </div> </div> </div><!-- /detailHeroContent --> </div> </section> <!-- ── MAIN ──────────────────────────────────────────────────────────────── --> <section class="detail-main"> <div class="container"> <div class="detail-layout gap-10 xl:grid-cols-[1fr_300px]"> <!-- Articles column --> <div> <article class="detail-article"> <p class="detail-article-lede">What the vulnerability does</p> <h2 class="detail-article-h"><span class="detail-sec-num">01</span>Description</h2> <div id="detailDescription"> <p class="detail-desc-text">A vulnerability has been found in automad up to 1.10.9 and classified as problematic. This vulnerability affects the Dashboard. The manipulation of the argument title with the input Home</title><script>alert("home")</script><title> leads to a cross site scripting. The attack can be initiated remotely but requires an authentication. The exploit details have disclosed to the public and may be used.</p> </div> </article> <article class="detail-article"> <p class="detail-article-lede">Key dates</p> <h2 class="detail-article-h"><span class="detail-sec-num">02</span>Disclosure timeline</h2> <div class="detail-timeline"> <div class="detail-timeline-ev first"> <span class="detail-timeline-date">April 29, 2022</span> CVE published </div> <div class="detail-timeline-ev"> <span class="detail-timeline-date">April 15, 2025</span> Record updated </div> </div> </article> <article class="detail-article"> <p class="detail-article-lede">External resources</p> <h2 class="detail-article-h"><span class="detail-sec-num">03</span>References</h2> <div class="detail-refs mt-3"> <a class="detail-ref-link" href="https://nvd.nist.gov/vuln/detail/CVE-2022-1536" target="_blank" rel="noopener noreferrer"> <span> NVD — National Vulnerability Database <span class="detail-ref-url">https://nvd.nist.gov/vuln/detail/CVE-2022-1536</span> </span> <svg width="14" height="14" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" aria-hidden="true"><path d="M7 17 17 7"/><path d="M8 7h9v9"/></svg> </a> <a class="detail-ref-link" href="https://cwe.mitre.org/data/definitions/79.html" target="_blank" rel="noopener noreferrer"> <span> CWE — Common Weakness Enumeration <span class="detail-ref-url">https://cwe.mitre.org/data/definitions/79.html</span> </span> <svg width="14" height="14" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" aria-hidden="true"><path d="M7 17 17 7"/><path d="M8 7h9v9"/></svg> </a> </div> </article> <article class="detail-article"> <p class="detail-article-lede">Related vulnerabilities</p> <h2 class="detail-article-h"><span class="detail-sec-num">04</span>Related CVE</h2> <div class="detail-refs mt-3"> <a class="detail-ref-link" href="/cve/CVE-2019-12715/" title="CVE-2019-12715: Cisco Unified Communications Manager Cross-Site Scripting Vulnerability | Askarlabs CVE Database"> <span> CVE-2019-12715 <span class="detail-ref-url">Cisco Unified Communications Manager Cross-Site Scripting Vulnerability</span> </span> <svg width="14" height="14" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" aria-hidden="true"><path d="M7 17 17 7"/><path d="M8 7h9v9"/></svg> </a> <a class="detail-ref-link" href="/cve/CVE-2026-9485/" title="CVE-2026-9485: SourceCodester Student Grades Management System students.php cross site scripting | Askarlabs CVE Database"> <span> CVE-2026-9485 <span class="detail-ref-url">SourceCodester Student Grades Management System students.php cross site scripting</span> </span> <svg width="14" height="14" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" aria-hidden="true"><path d="M7 17 17 7"/><path d="M8 7h9v9"/></svg> </a> <a class="detail-ref-link" href="/cve/CVE-2025-41046/" title="CVE-2025-41046: Stored Cross-Site Scripting vulnerability in appRain CMF | Askarlabs CVE Database"> <span> CVE-2025-41046 <span class="detail-ref-url">Stored Cross-Site Scripting vulnerability in appRain CMF</span> </span> <svg width="14" height="14" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" aria-hidden="true"><path d="M7 17 17 7"/><path d="M8 7h9v9"/></svg> </a> <a class="detail-ref-link" href="/cve/CVE-2023-3833/" title="CVE-2023-3833: Bug Finder Montage Ticket create cross site scripting | Askarlabs CVE Database"> <span> CVE-2023-3833 <span class="detail-ref-url">Bug Finder Montage Ticket create cross site scripting</span> </span> <svg width="14" height="14" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" aria-hidden="true"><path d="M7 17 17 7"/><path d="M8 7h9v9"/></svg> </a> <a class="detail-ref-link" href="/cve/CVE-2023-22724/" title="CVE-2023-22724: glpi contains XSS in RSS Description Link | Askarlabs CVE Database"> <span> CVE-2023-22724 <span class="detail-ref-url">glpi contains XSS in RSS Description Link</span> </span> <svg width="14" height="14" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" aria-hidden="true"><path d="M7 17 17 7"/><path d="M8 7h9v9"/></svg> </a> </div> </article> </div> <!-- Sidebar --> <aside class="detail-sidebar xl:sticky xl:top-6"> <div class="detail-side-card"> <h3 class="detail-side-h">Identifiers</h3> <div> <div class="detail-kv-row"> <span class="detail-kv-k">CVE</span> <span class="detail-kv-v">CVE-2022-1536</span> </div> <div class="detail-kv-row"> <span class="detail-kv-k">CWE</span> <span class="detail-kv-v">CWE-79</span> </div> <div class="detail-kv-row"> <span class="detail-kv-k">CVSS</span> <span class="detail-kv-v">3.5 / LOW</span> </div> </div> </div> <div class="detail-side-card"> <h3 class="detail-side-h">Affected versions</h3> <div> <div class="detail-affected-row"> <div class="detail-kv-row"> <span class="detail-kv-k">Vendor</span> <span class="detail-kv-v">Unspecified</span> </div> <div class="detail-kv-row"> <span class="detail-kv-k">Product</span> <span class="detail-kv-v">automad</span> </div> <div class="detail-kv-row"> <span class="detail-kv-k">Affected</span> <span class="detail-kv-v detail-kv-affected">1.10.0</span> </div> </div> <div class="detail-affected-row"> <div class="detail-kv-row"> <span class="detail-kv-k">Vendor</span> <span class="detail-kv-v">Unspecified</span> </div> <div class="detail-kv-row"> <span class="detail-kv-k">Product</span> <span class="detail-kv-v">automad</span> </div> <div class="detail-kv-row"> <span class="detail-kv-k">Affected</span> <span class="detail-kv-v detail-kv-affected">1.10.1</span> </div> </div> <div class="detail-affected-row"> <div class="detail-kv-row"> <span class="detail-kv-k">Vendor</span> <span class="detail-kv-v">Unspecified</span> </div> <div class="detail-kv-row"> <span class="detail-kv-k">Product</span> <span class="detail-kv-v">automad</span> </div> <div class="detail-kv-row"> <span class="detail-kv-k">Affected</span> <span class="detail-kv-v detail-kv-affected">1.10.2</span> </div> </div> <div class="detail-affected-row"> <div class="detail-kv-row"> <span class="detail-kv-k">Vendor</span> <span class="detail-kv-v">Unspecified</span> </div> <div class="detail-kv-row"> <span class="detail-kv-k">Product</span> <span class="detail-kv-v">automad</span> </div> <div class="detail-kv-row"> <span class="detail-kv-k">Affected</span> <span class="detail-kv-v detail-kv-affected">1.10.3</span> </div> </div> <div class="detail-affected-row"> <div class="detail-kv-row"> <span class="detail-kv-k">Vendor</span> <span class="detail-kv-v">Unspecified</span> </div> <div class="detail-kv-row"> <span class="detail-kv-k">Product</span> <span class="detail-kv-v">automad</span> </div> <div class="detail-kv-row"> <span class="detail-kv-k">Affected</span> <span class="detail-kv-v detail-kv-affected">1.10.4</span> </div> </div> <div class="detail-affected-row"> <div class="detail-kv-row"> <span class="detail-kv-k">Vendor</span> <span class="detail-kv-v">Unspecified</span> </div> <div class="detail-kv-row"> <span class="detail-kv-k">Product</span> <span class="detail-kv-v">automad</span> </div> <div class="detail-kv-row"> <span class="detail-kv-k">Affected</span> <span class="detail-kv-v detail-kv-affected">1.10.5</span> </div> </div> <div class="detail-affected-row"> <div class="detail-kv-row"> <span class="detail-kv-k">Vendor</span> <span class="detail-kv-v">Unspecified</span> </div> <div class="detail-kv-row"> <span class="detail-kv-k">Product</span> <span class="detail-kv-v">automad</span> </div> <div class="detail-kv-row"> <span class="detail-kv-k">Affected</span> <span class="detail-kv-v detail-kv-affected">1.10.6</span> </div> </div> <div class="detail-affected-row"> <div class="detail-kv-row"> <span class="detail-kv-k">Vendor</span> <span class="detail-kv-v">Unspecified</span> </div> <div class="detail-kv-row"> <span class="detail-kv-k">Product</span> <span class="detail-kv-v">automad</span> </div> <div class="detail-kv-row"> <span class="detail-kv-k">Affected</span> <span class="detail-kv-v detail-kv-affected">1.10.7</span> </div> </div> <div class="detail-affected-row"> <div class="detail-kv-row"> <span class="detail-kv-k">Vendor</span> <span class="detail-kv-v">Unspecified</span> </div> <div class="detail-kv-row"> <span class="detail-kv-k">Product</span> <span class="detail-kv-v">automad</span> </div> <div class="detail-kv-row"> <span class="detail-kv-k">Affected</span> <span class="detail-kv-v detail-kv-affected">1.10.8</span> </div> </div> <div class="detail-affected-row"> <div class="detail-kv-row"> <span class="detail-kv-k">Vendor</span> <span class="detail-kv-v">Unspecified</span> </div> <div class="detail-kv-row"> <span class="detail-kv-k">Product</span> <span class="detail-kv-v">automad</span> </div> <div class="detail-kv-row"> <span class="detail-kv-k">Affected</span> <span class="detail-kv-v detail-kv-affected">1.10.9</span> </div> </div> </div> </div> </aside> </div> </div> </section> </main> <footer class="footer"> <span class="footer-watermark" aria-hidden="true">ASKARLABS</span> <div class="container"> <div class="footer-top"> <span class="footer-brand"> <img src="https://askarlabs.b-cdn.net/images/logo-full-light.png" alt="AskarLabs" style="height:38px;width:auto;"> </span> <p class="footer-blurb">We build essential tools for the teams keeping things running - quiet, honest software for the sites you ship and the secrets your team types every day.</p> <div class="socials"> <a target="_blank" class="social" href="https://twitter.com/askarlabshq" aria-label="AskarLabs on X" title="Follow AskarLabs on X"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" aria-hidden="true"> <path d="M22 4s-.7 2.1-2 3.4c1.6 10-9.4 17.3-18 11.6 2.2.1 4.4-.6 6-2C3 15.5.5 9.6 3 5c2.2 2.6 5.6 4.1 9 4-.9-4.2 4-6.6 7-3.8 1.1 0 3-1.2 3-1.2z" /> </svg></a> <a target="_blank" class="social" href="https://www.linkedin.com/company/askarlabs" aria-label="AskarLabs on LinkedIn" title="Connect with AskarLabs on LinkedIn"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" aria-hidden="true"> <path d="M16 8a6 6 0 0 1 6 6v7h-4v-7a2 2 0 0 0-2-2 2 2 0 0 0-2 2v7h-4v-7a6 6 0 0 1 6-6z" /> <rect width="4" height="12" x="2" y="9" /> <circle cx="4" cy="4" r="2" /> </svg></a> <a target="_blank" class="social" href="https://github.com/askarlabs" aria-label="AskarLabs on GitHub" title="AskarLabs open source projects on GitHub"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" aria-hidden="true"> <path d="M15 22v-4a4.8 4.8 0 0 0-1-3.5c3 0 6-2 6-5.5.08-1.25-.27-2.48-1-3.5.28-1.15.28-2.35 0-3.5 0 0-1 0-3 1.5-2.64-.5-5.36-.5-8 0C6 2 5 2 5 2c-.3 1.15-.3 2.35 0 3.5A5.4 5.4 0 0 0 4 9c0 3.5 3 5.5 6 5.5-.39.49-.68 1.05-.85 1.65-.17.6-.22 1.23-.15 1.85v4" /> <path d="M9 18c-4.51 2-5-2-7-2" /> </svg></a> <a target="_blank" class="social" href="https://hub.docker.com/u/askarlabs" aria-label="AskarLabs on Docker Hub" title="AskarLabs Docker images on Docker Hub"><svg width="16" height="16" viewBox="0 0 24 24" fill="currentColor" stroke="none" aria-hidden="true"> <path d="M13.983 11.078h2.119a.186.186 0 00.186-.185V9.006a.186.186 0 00-.186-.186h-2.119a.185.185 0 00-.185.185v1.888c0 .102.083.185.185.185m-2.954-5.43h2.118a.186.186 0 00.186-.186V3.574a.186.186 0 00-.186-.185h-2.118a.185.185 0 00-.185.185v1.888c0 .102.082.185.185.186m0 2.716h2.118a.187.187 0 00.186-.186V6.29a.186.186 0 00-.186-.185h-2.118a.185.185 0 00-.185.185v1.887c0 .102.082.186.185.186m-2.93 0h2.12a.186.186 0 00.184-.186V6.29a.185.185 0 00-.185-.185H8.1a.185.185 0 00-.185.185v1.887c0 .102.083.186.185.186m-2.964 0h2.119a.186.186 0 00.185-.186V6.29a.185.185 0 00-.185-.185H5.136a.186.186 0 00-.186.185v1.887c0 .102.084.186.186.186m5.893 2.715h2.118a.186.186 0 00.186-.185V9.006a.186.186 0 00-.186-.186h-2.118a.185.185 0 00-.185.185v1.888c0 .102.082.185.185.185m-2.93 0h2.12a.185.185 0 00.184-.185V9.006a.185.185 0 00-.184-.186h-2.12a.185.185 0 00-.184.185v1.888c0 .102.083.185.185.185m-2.964 0h2.119a.185.185 0 00.185-.185V9.006a.185.185 0 00-.184-.186h-2.12a.186.186 0 00-.186.186v1.887c0 .102.084.185.186.185m-2.92 0h2.12a.186.186 0 00.184-.185V9.006a.185.185 0 00-.184-.186h-2.12a.185.185 0 00-.184.186v1.887c0 .102.082.185.185.185M23.763 9.89c-.065-.051-.672-.51-1.954-.51-.338.001-.676.03-1.01.087-.248-1.7-1.653-2.53-1.716-2.566l-.344-.199-.226.327c-.284.438-.49.922-.612 1.43-.23.97-.09 1.882.403 2.661-.595.332-1.55.413-1.744.42H.751a.751.751 0 00-.75.748 11.376 11.376 0 00.692 4.062c.545 1.428 1.355 2.48 2.41 3.124 1.18.723 3.1 1.137 5.275 1.137.983.003 1.963-.086 2.93-.266a12.248 12.248 0 003.823-1.389c.98-.567 1.86-1.288 2.61-2.136 1.252-1.418 1.998-2.997 2.553-4.4h.221c1.372 0 2.215-.549 2.68-1.009.309-.293.55-.65.707-1.046l.098-.288Z" /> </svg></a> </div> </div> <div class="footer-grid grid grid-cols-2 md:grid-cols-3 lg:grid-cols-5 gap-8"> <div class="fcol"> <h4>CMS Security</h4> <ul> <li><a href="/vscan" title="Check your CMS for known vulnerabilities and outdated plugins">vScan</a></li> <li><a href="/wpaudit" title="Check your WordPress site for security issues in seconds">WP-Audit</a></li> </ul> </div> <div class="fcol"> <h4>Identity & Access</h4> <ul> <li><a target="_blank" href="https://passwordlab.io" title="Strong password manager built for teams">PasswordLab</a></li> <li><a href="https://passwordlab.io/features.php" target="_blank" title="See what PasswordLab can do for your team">Features</a></li> <li><a href="https://passwordlab.io/pricing.php" target="_blank" title="Plans and pricing for individuals and teams">Pricing</a></li> <li><a href="https://passwordlab.io/free-license.php" target="_blank" title="Get a free PasswordLab license for open source projects">Free license</a></li> </ul> </div> <div class="fcol"> <h4>Resources</h4> <ul> <li><a href="/docs" title="Setup guides and reference docs for AskarLabs vScan">Docs</a></li> <li><a href="/cve/" title="Search CVEs by product, vendor, or keyword">CVE Database</a></li> <li><a href="/cve/wordpress/" title="Known security vulnerabilities affecting WordPress">WordPress CVEs</a></li> <li><a href="/cve/joomla/" title="Known security vulnerabilities affecting Joomla">Joomla CVEs</a></li> <li><a href="/cve/drupal/" title="Known security vulnerabilities affecting Drupal">Drupal CVEs</a></li> </ul> </div> <div class="fcol"> <h4>Company</h4> <ul> <li><a href="/contact" title="Send us a message or book a call">Contact</a></li> <li><a href="/contact#security" title="Report a vulnerability or security concern to our team">Security</a></li> </ul> </div> <div class="fcol"> <h4>Legal</h4> <ul> <li><a href="/privacy" title="How we collect, use, and protect your data">Privacy</a></li> <li><a href="/terms-conditions" title="Terms and conditions for using AskarLabs services">Terms</a></li> <li><a href="/cookie" title="What cookies we use and how to control them">Cookies</a></li> <li><a href="/gdpr" title="Your rights under GDPR and how we handle them">GDPR</a></li> </ul> </div> </div> <div class="footer-bottom flex-col items-start md:flex-row md:items-center"> <span class="copy">© 2026 AskarLabs. All trademarks are the property of their respective owners.</span> </div> </div> </footer> <div class="drawer" id="drawer" role="dialog" aria-modal="true" aria-label="Menu"> <div class="drawer-head"> <a class="brand" href="/" aria-label="AskarLabs home"> <img src="https://askarlabs.b-cdn.net/images/logo-full.png" alt="AskarLabs" style="height:32px;width:auto;"> </a> <button class="drawer-close" type="button" aria-label="Close menu" id="drawerClose">×</button> </div> <div class="drawer-links"> <div class="drawer-section">CMS Security</div> <a href="/vscan">vScan</a> <a href="/wpaudit">WP Audit</a> <div class="drawer-section">Identity & Access</div> <a href="https://passwordlab.io" target="_blank">PasswordLab</a> <a href="/docs">Docs</a> <div class="drawer-section">CVE Database</div> <a href="/cve/">All CVEs</a> <a href="/cve/wordpress/">WordPress CVEs</a> <a href="/cve/joomla/">Joomla CVEs</a> <a href="/cve/drupal/">Drupal CVEs</a> <a href="/contact" class="btn-primary text-light" style="margin-top:24px;justify-content:center;">Talk to us <svg class="i" width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" aria-hidden="true"> <path d="M5 12h14" /> <path d="m12 5 7 7-7 7" /> </svg></a> </div> </div> <script src="https://askarlabs.b-cdn.net/js/drawer.js"></script> <script> (function () { var btn = document.getElementById('detailCopyBtn'); if (!btn) return; btn.addEventListener('click', function () { var id = btn.dataset.cveId || ''; var lbl = document.getElementById('detailCopyLabel'); navigator.clipboard.writeText(id).then(function () { if (lbl) lbl.textContent = 'Copied!'; setTimeout(function () { if (lbl) lbl.textContent = 'Copy CVE ID'; }, 1500); }).catch(function () { if (lbl) lbl.textContent = 'Copy failed'; }); }); }()); </script> </body> </html>