Security Advisory
CVE-2022-27258
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Multiple Cross-Site Scripting (XSS) vulnerabilities in Hubzilla 7.0.3 and earlier allows remote attacker to include arbitrary web script or HTML via the rpath parameter.