Vulnerabilities > Fava Project > Fava > 1.22.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-08-01 | CVE-2022-2589 | Unspecified vulnerability in Fava Project Fava Cross-site Scripting (XSS) - Reflected in GitHub repository beancount/fava prior to 1.22.3. | 6.1 |
| 2022-07-25 | CVE-2022-2523 | Cross-site Scripting vulnerability in Fava Project Fava Cross-site Scripting (XSS) - Reflected in GitHub repository beancount/fava prior to 1.22.2. | 6.1 |