{"id":"CVE-2022-42100","details":"KLiK SocialMediaWebsite Version 1.0.1 has XSS vulnerabilities that allow attackers to store XSS via location input reply-form.","modified":"2026-07-08T06:04:28.334235177Z","published":"2022-11-29T00:00:00Z","database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/42xxx/CVE-2022-42100.json","cna_assigner":"mitre"},"references":[{"type":"WEB","url":"https://github.com/msaad1999/KLiK-SocialMediaWebsite/releases/tag/v1.0.1"},{"type":"WEB","url":"https://grimthereaperteam.medium.com/klik-socialmediawebsite-version-1-0-1-stored-xss-vulnerability-at-reply-form-b189147c1f93"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/42xxx/CVE-2022-42100.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-42100"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/msaad1999/klik-socialmediawebsite","events":[{"introduced":"86ada962694a7dc9553b1bf0a2599ea6d6131cb7"},{"fixed":"86ada962694a7dc9553b1bf0a2599ea6d6131cb7"}],"database_specific":{"cpe":"cpe:2.3:a:klik_project:klik:1.0.1:*:*:*:*:*:*:*","source":["CPE_STRING","REFERENCES"],"extracted_events":[{"introduced":"1.0.1"},{"last_affected":"1.0.1"}]}}],"versions":["1.0.1"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-42100.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"}]}