Vulnerabilities > CVE-2022-2589 - Unspecified vulnerability in Fava Project Fava
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
LOW Integrity impact
LOW Availability impact
NONE Summary
Cross-site Scripting (XSS) - Reflected in GitHub repository beancount/fava prior to 1.22.3.