Fava

Latest version: v1.27.3

CVE/PVE	Vulnerability ID	Advisory	Affected versions	Severity	Severity Score
CVE-2022-2589	53920	Fava before 1.22.3 is vulnerable to reflected cross-site scripting du…	>=0,<1.22.3	MEDIUM	6.1
CVE-2022-2523	54340	Cross-site Scripting (XSS) - Reflected in GitHub repository beancount…	>=0,<1.22.2	MEDIUM	6.1
CVE-2022-2514	54342	The time and filter parameters in Fava prior to v1.22 are vulnerable …	>=0,<1.22	MEDIUM	6.1