{"id":"GHSA-jpp7-7chh-cf67","summary":"Cross site scripting in parse-url","details":"Cross-site Scripting (XSS) - Stored in GitHub repository ionicabizau/parse-url prior to 7.0.0.","aliases":["CVE-2022-2218"],"modified":"2023-11-08T04:08:11.991089Z","published":"2022-06-28T00:01:01Z","database_specific":{"severity":"MODERATE","nvd_published_at":"2022-06-27T13:15:00Z","github_reviewed_at":"2022-07-05T22:05:51Z","cwe_ids":["CWE-79"],"github_reviewed":true},"references":[{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-2218"},{"type":"WEB","url":"https://github.com/ionicabizau/parse-url/commit/21c72ab9412228eea753e2abc48f8962707b1fe3"},{"type":"PACKAGE","url":"https://github.com/ionicabizau/parse-url"},{"type":"WEB","url":"https://huntr.dev/bounties/024912d3-f103-4daf-a1d0-567f4d9f2bf5"}],"affected":[{"package":{"name":"parse-url","ecosystem":"npm","purl":"pkg:npm/parse-url"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"},{"fixed":"6.0.1"}]}],"database_specific":{"source":"https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/06/GHSA-jpp7-7chh-cf67/GHSA-jpp7-7chh-cf67.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}]}