/
DirectorySecurity Advisories
Sign In
Security Advisories

CVE-2022-4455

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2022-4455

CGA ID

CGA-gpwg-vmwg-p2mv

Severity

Unknown

Description

A vulnerability, which was classified as problematic, was found in sproctor php-calendar. This affects an unknown part of the file index.php. The manipulation of the argument $_SERVER['PHP_SELF'] leads to cross site scripting. It is possible to initiate the attack remotely. The name of the patch is a2941109b42201c19733127ced763e270a357809. It is recommended to apply a patch to fix this issue. The identifier VDB-215445 was assigned to this vulnerability.

References

  • https://images.chainguard.dev/security/CGA-gpwg-vmwg-p2mv
  • https://github.com/advisories/GHSA-3957-4jhv-xcc7
  • https://github.com/sproctor/php-calendar/commit/a2941109b42201c19733127ced763e270a357809
  • https://vuldb.com/?id.215445

Affected packages

Safe Source for Open Sourceâ„¢
Media KitContact Us
© 2025 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Products

Chainguard ContainersChainguard LibrariesChainguard VMs

Why Chainguard

Container Image SecurityVulnerability RemediationCompliance and Risk MitigationSoftware Supply Chain SecurityAI/ML Security

Customers

Customer StoriesChainguard Love

Company

About UsPricingContact UsOpen SourceCareersNewsroomLegal

Resources

Unchained BlogEventsTrust CenterDocumentation