[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2022-27777":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":44,"aliases":54,"duplicate_of":9,"upstream":55,"downstream":56,"duplicates":73,"related":74,"reserved_at":9,"published_at":78,"modified_at":79,"state":80,"summary":81,"references_raw":89,"kevs":107,"epss":108,"epss_history":111,"metrics":374,"affected":385},"CVE-2022-27777","A XSS Vulnerability in Action View tag helpers >= 5.2.0 and \u003C 5.2.0 which would allow an attacker to inject content if able to control input into specific attributes.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-79","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.","weakness","Stable","Base","High",[20,24,28,32,36,40],{"id":21,"name":22,"techniques":23},"CAPEC-209","XSS Using MIME Type Mismatch",[],{"id":25,"name":26,"techniques":27},"CAPEC-588","DOM-Based XSS",[],{"id":29,"name":30,"techniques":31},"CAPEC-591","Reflected XSS",[],{"id":33,"name":34,"techniques":35},"CAPEC-592","Stored XSS",[],{"id":37,"name":38,"techniques":39},"CAPEC-63","Cross-Site Scripting (XSS)",[],{"id":41,"name":42,"techniques":43},"CAPEC-85","AJAX Footprinting",[],[45],{"_key":46,"name":47,"source":48,"url":49,"maturity":50,"reliability_score":51,"verified":52,"type":9,"platforms":53,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_742302C9F5832E88","Exploit Reference (discuss.rubyonrails.org)","reference","https://discuss.rubyonrails.org/t/cve-2022-27777-possible-xss-vulnerability-in-action-view-tag-helpers/80534","unknown",0.2,false,[],[],[],[57,59,61,63,65,67,69,71],{"_key":58},"SUSE-SU-2022:3860-1",{"_key":60},"SUSE-SU-2022:3621-1",{"_key":62},"SUSE-SU-2023:2059-1",{"_key":64},"DLA-3093-1",{"_key":66},"DSA-5372-1",{"_key":68},"DEBIAN-CVE-2022-27777",{"_key":70},"RHSA-2023:2097",{"_key":72},"UBUNTU-CVE-2022-27777",[],[75,76,77],{"_key":58},{"_key":60},{"_key":62},"2022-05-26T00:00:00.000Z","2024-08-03T05:32:59.808Z","Modified",{"cisa_kev":52,"cisa_ransomware":52,"cisa_vendor":9,"epss_severity":82,"epss_score":83,"severity":84,"severity_score":85,"severity_version":86,"severity_source":87,"severity_vector":88,"severity_status":80},"low",0.01409,"medium",6.1,"v3.1","nvd","CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",[90,97,103],{"url":49,"sources":91,"tags":93},[92,87],"cve.org",[94,95,96],"Exploit","Patch","Vendor Advisory",{"url":98,"sources":99,"tags":100},"https://lists.debian.org/debian-lts-announce/2022/09/msg00002.html",[92,87],[101,102],"Mailing List","Third Party Advisory",{"url":104,"sources":105,"tags":106},"https://www.debian.org/security/2023/dsa-5372",[92,87],[96],[],{"date":109,"score":83,"percentile":110},"2026-06-04",0.80827,[112,116,119,122,125,128,131,134,136,139,142,145,148,151,154,158,162,165,169,172,175,178,181,184,186,189,191,194,198,201,204,207,210,212,214,217,220,223,226,229,232,235,238,241,244,247,250,253,255,258,261,264,267,270,273,276,279,282,284,287,290,293,296,299,302,305,308,311,314,317,319,322,324,326,329,332,335,337,340,343,346,349,352,355,358,361,363,365,368,371],{"date":113,"score":114,"percentile":115},"2025-11-04",0.017,0.8166,{"date":117,"score":114,"percentile":118},"2025-11-05",0.81661,{"date":120,"score":114,"percentile":121},"2025-11-06",0.81664,{"date":123,"score":114,"percentile":124},"2025-11-07",0.81674,{"date":126,"score":114,"percentile":127},"2025-11-08",0.81681,{"date":129,"score":114,"percentile":130},"2025-11-09",0.81678,{"date":132,"score":114,"percentile":133},"2025-11-10",0.81671,{"date":135,"score":114,"percentile":127},"2025-11-11",{"date":137,"score":114,"percentile":138},"2025-11-12",0.81691,{"date":140,"score":114,"percentile":141},"2025-11-13",0.81697,{"date":143,"score":114,"percentile":144},"2025-11-14",0.81702,{"date":146,"score":114,"percentile":147},"2025-11-15",0.81695,{"date":149,"score":114,"percentile":150},"2025-11-16",0.81696,{"date":152,"score":114,"percentile":153},"2025-11-17",0.81694,{"date":155,"score":156,"percentile":157},"2025-11-18",0.00779,0.71536,{"date":159,"score":160,"percentile":161},"2025-11-19",0.00823,0.72349,{"date":163,"score":160,"percentile":164},"2025-11-20",0.72358,{"date":166,"score":167,"percentile":168},"2025-11-21",0.01155,0.77911,{"date":170,"score":167,"percentile":171},"2025-11-22",0.77912,{"date":173,"score":167,"percentile":174},"2025-11-23",0.77896,{"date":176,"score":167,"percentile":177},"2025-11-24",0.77895,{"date":179,"score":167,"percentile":180},"2025-11-25",0.77901,{"date":182,"score":167,"percentile":183},"2025-11-26",0.77908,{"date":185,"score":167,"percentile":168},"2025-11-27",{"date":187,"score":167,"percentile":188},"2025-11-28",0.77903,{"date":190,"score":167,"percentile":168},"2025-11-29",{"date":192,"score":167,"percentile":193},"2025-11-30",0.77909,{"date":195,"score":196,"percentile":197},"2025-12-01",0.0107,0.7718,{"date":199,"score":196,"percentile":200},"2025-12-02",0.77191,{"date":202,"score":196,"percentile":203},"2025-12-03",0.77178,{"date":205,"score":167,"percentile":206},"2025-12-04",0.77898,{"date":208,"score":167,"percentile":209},"2025-12-05",0.77905,{"date":211,"score":167,"percentile":183},"2025-12-06",{"date":213,"score":167,"percentile":180},"2025-12-07",{"date":215,"score":167,"percentile":216},"2025-12-08",0.77904,{"date":218,"score":167,"percentile":219},"2025-12-09",0.77926,{"date":221,"score":167,"percentile":222},"2025-12-10",0.77951,{"date":224,"score":167,"percentile":225},"2025-12-11",0.77966,{"date":227,"score":167,"percentile":228},"2025-12-12",0.77985,{"date":230,"score":167,"percentile":231},"2025-12-13",0.77987,{"date":233,"score":167,"percentile":234},"2025-12-14",0.77983,{"date":236,"score":167,"percentile":237},"2025-12-15",0.77978,{"date":239,"score":167,"percentile":240},"2025-12-16",0.7799,{"date":242,"score":167,"percentile":243},"2025-12-17",0.77999,{"date":245,"score":167,"percentile":246},"2025-12-18",0.78016,{"date":248,"score":167,"percentile":249},"2025-12-19",0.78028,{"date":251,"score":167,"percentile":252},"2025-12-20",0.78022,{"date":254,"score":167,"percentile":246},"2025-12-21",{"date":256,"score":167,"percentile":257},"2025-12-22",0.78019,{"date":259,"score":167,"percentile":260},"2025-12-23",0.78021,{"date":262,"score":167,"percentile":263},"2025-12-24",0.78034,{"date":265,"score":167,"percentile":266},"2025-12-25",0.78053,{"date":268,"score":167,"percentile":269},"2025-12-26",0.78051,{"date":271,"score":167,"percentile":272},"2025-12-27",0.78099,{"date":274,"score":167,"percentile":275},"2025-12-28",0.7804,{"date":277,"score":167,"percentile":278},"2025-12-29",0.78036,{"date":280,"score":167,"percentile":281},"2025-12-30",0.78041,{"date":283,"score":167,"percentile":266},"2025-12-31",{"date":285,"score":196,"percentile":286},"2026-01-01",0.77355,{"date":288,"score":196,"percentile":289},"2026-01-02",0.77356,{"date":291,"score":196,"percentile":292},"2026-01-03",0.77354,{"date":294,"score":167,"percentile":295},"2026-01-04",0.78054,{"date":297,"score":167,"percentile":298},"2026-01-05",0.78049,{"date":300,"score":167,"percentile":301},"2026-01-06",0.78057,{"date":303,"score":167,"percentile":304},"2026-01-07",0.78063,{"date":306,"score":167,"percentile":307},"2026-01-08",0.78071,{"date":309,"score":167,"percentile":310},"2026-01-09",0.78074,{"date":312,"score":167,"percentile":313},"2026-01-10",0.78075,{"date":315,"score":167,"percentile":316},"2026-01-11",0.78066,{"date":318,"score":167,"percentile":266},"2026-01-12",{"date":320,"score":167,"percentile":321},"2026-01-13",0.7805,{"date":323,"score":167,"percentile":307},"2026-01-14",{"date":325,"score":167,"percentile":310},"2026-01-15",{"date":327,"score":167,"percentile":328},"2026-01-16",0.78083,{"date":330,"score":167,"percentile":331},"2026-01-17",0.78089,{"date":333,"score":167,"percentile":334},"2026-01-18",0.78084,{"date":336,"score":167,"percentile":328},"2026-01-19",{"date":338,"score":167,"percentile":339},"2026-01-20",0.78076,{"date":341,"score":167,"percentile":342},"2026-01-21",0.7808,{"date":344,"score":167,"percentile":345},"2026-01-22",0.78088,{"date":347,"score":167,"percentile":348},"2026-01-23",0.78115,{"date":350,"score":167,"percentile":351},"2026-01-24",0.78127,{"date":353,"score":167,"percentile":354},"2026-01-25",0.7812,{"date":356,"score":167,"percentile":357},"2026-01-26",0.78112,{"date":359,"score":167,"percentile":360},"2026-01-27",0.7811,{"date":362,"score":167,"percentile":348},"2026-01-28",{"date":364,"score":167,"percentile":357},"2026-01-29",{"date":366,"score":167,"percentile":367},"2026-01-30",0.78116,{"date":369,"score":167,"percentile":370},"2026-01-31",0.78118,{"date":372,"score":196,"percentile":373},"2026-02-01",0.7742,[375],{"source":87,"cvss_v2_0":376,"cvss_v3_0":9,"cvss_v3_1":381,"cvss_v4_0":9},{"baseScore":377,"baseSeverity":9,"vectorString":378,"impactScore":379,"exploitabilityScore":380},4.3,"AV:N/AC:M/Au:N/C:N/I:P/A:N",2.9,8.6,{"baseScore":85,"baseSeverity":382,"vectorString":88,"impactScore":383,"exploitabilityScore":384},"MEDIUM",4.5,7.2,[386,395],{"ecosystem":9,"name":387,"vendor":388,"product":389,"cpe_part":390,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":391},"debian linux","debian","debian_linux","o",[392],{"version":393,"is_range":52,"range_type":394,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10.0","cpe",{"ecosystem":9,"name":396,"vendor":397,"product":396,"cpe_part":398,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":399},"actionpack","rubyonrails","a",[400,405,410,414],{"version":401,"is_range":402,"range_type":394,"version_start":9,"version_start_type":9,"version_end":403,"version_end_type":404,"fixed_in":9},"lt5.2.7.1",true,"5.2.7.1","excluding",{"version":406,"is_range":402,"range_type":394,"version_start":407,"version_start_type":408,"version_end":409,"version_end_type":404,"fixed_in":9},"gte6.0.0_lt6.0.4.8","6.0.0","including","6.0.4.8",{"version":411,"is_range":402,"range_type":394,"version_start":412,"version_start_type":408,"version_end":413,"version_end_type":404,"fixed_in":9},"gte6.1.0_lt6.1.5.1","6.1.0","6.1.5.1",{"version":415,"is_range":402,"range_type":394,"version_start":416,"version_start_type":408,"version_end":417,"version_end_type":404,"fixed_in":9},"gte7.0.0_lt7.0.2.4","7.0.0","7.0.2.4"]