CVE-2022-3721

Description

Froxlor prior to version 0.10.39 is vulnerable to Code Injection.

How to fix CVE-2022-3721

To remediate CVE-2022-3721, upgrade the affected package to a fixed version below.

• Packagist/froxlor/froxlor—upgrade to 0.10.39 or later

Is CVE-2022-3721 being exploited?

Low — EPSS is 0.4%, meaning exploitation activity has not been observed at scale.

Affected packages (1)

• from 0, < 0.10.39

CVSS scores

References (5)

• ADVISORYnvd.nist.gov/vuln/detail/CVE-2022-3721
• PATCHgithub.com/froxlor/froxlor
• WEBgithub.com/froxlor/froxlor/commit/1182453c18a83309a3470b2775c148ede740806c
• WEBhuntr.com/bounties/a3c506f0-5f8a-4eaa-b8cc-46fb9e35cf7a