{"id":"CVE-2022-3123","summary":"Cross-site Scripting (XSS) - Reflected in splitbrain/dokuwiki","details":"Cross-site Scripting (XSS) - Reflected in GitHub repository splitbrain/dokuwiki prior to 2022-07-31a.","aliases":["BIT-dokuwiki-2022-3123"],"modified":"2026-04-16T04:41:29.563463337Z","published":"2022-09-05T10:10:09Z","database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/3xxx/CVE-2022-3123.json","cwe_ids":["CWE-79"],"cna_assigner":"@huntrdev"},"references":[{"type":"WEB","url":"https://huntr.dev/bounties/d72a979b-57db-4201-9500-66b49a5c1345"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/3xxx/CVE-2022-3123.json"},{"type":"ADVISORY","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LLNV7GYZPGLIKBLISVQUREQXE3WHI5R2/"},{"type":"ADVISORY","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PZQTVHRBEVMSKQESNFLU7MAUAB3R3PG2/"},{"type":"ADVISORY","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XIWZXLDU7SUS2FANXQRCHJY3F3SWT27E/"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-3123"},{"type":"FIX","url":"https://github.com/splitbrain/dokuwiki/commit/63e9a247c072008a031f9db39fa496f6aca489b6"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/dokuwiki/dokuwiki","events":[{"introduced":"0"},{"fixed":"63e9a247c072008a031f9db39fa496f6aca489b6"}]}],"versions":["release-2005-07-01","release-2005-07-13","release-2005-09-19","release-2005-09-22","release-2006-03-05","release-2006-03-09","release-2006-09-28rc","release-2006-10-08rc","release-2006-10-19rc","release-2006-11-06","release-2007-05-24rc","release-2007-06-26","release-2008-03-31rc","release-2008-04-11rc","release-2008-05-04","release-2008-05-05","release-2009-01-26rc","release-2009-01-30rc","release-2009-02-06rc","release-2009-02-14","release-2009-12-02rc","release-2009-12-25"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-3123.json"}},{"ranges":[{"type":"GIT","repo":"https://github.com/splitbrain/dokuwiki","events":[{"introduced":"0"},{"fixed":"b7fcf218f1b2e858e7d41809d7dd291fc8a898f3"}]}],"versions":["release-2005-07-01","release-2005-07-13","release-2005-09-19","release-2005-09-22","release-2006-03-05","release-2006-03-09","release-2006-09-28rc","release-2006-10-08rc","release-2006-10-19rc","release-2006-11-06","release-2007-05-24rc","release-2007-06-26","release-2008-03-31rc","release-2008-04-11rc","release-2008-05-04","release-2008-05-05","release-2009-01-26rc","release-2009-01-30rc","release-2009-02-06rc","release-2009-02-14","release-2009-12-02rc","release-2009-12-25","release-2010-10-07rc","release-2010-10-27rc","release-2010-11-07","release-2010-11-07a","release-2010-11-07b","release-2013-12-08a","release-2014-05-05b","release-2014_05_05c","release-2014_05_05d","release-2014_05_05e","release-2016-06-26b","release-2016-06-26c","release-2016-06-26d","release-2016-06-26e","release-2017-02-19f","release-2017-02-19g","release-2020-07-29a"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-3123.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"}]}