Stored XSS in Username & Email input fields leading to account takeover and privilege escalation in GitHub repository causefx/organizr prior to 2.1.1810

Stored XSS in Username & Email input fields leading to account takeover and privilege escalation in GitHub repository causefx/organizr prior to 2.1.1810

CVE-2022-1347 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H

Stored XSS in the "Username" & "Email" input fields leads to account takeover of Admin & Co-admin users in GitHub repository causefx/organizr prior to 2.1.1810. Account takeover and privilege escalation

Learn more about our User Device Pen Test.