CVE-2022-40317

MEDIUM

OpenKM 6.3.11 - Stored Cross-Site Scripting via JavaScript URI in Anchor Element

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2022-40317. PoCs published by izdiwho.

AI-analyzed exploit summary The repository describes a stored XSS vulnerability in OpenKM Community Edition 6.3.11, where the 'javascript&colon;' bypass in an <a> tag evades sanitization. The payload `<a href='javascript&colon;alert(1)'>Click here for more info</a>` demonstrates the issue, requiring user interaction to trigger.

Description

OpenKM 6.3.11 allows stored XSS related to the javascript&colon; substring in an A element.

Exploits (1)

nomisec WRITEUP 2 stars
by izdiwho · poc
https://github.com/izdiwho/CVE-2022-40317

The repository describes a stored XSS vulnerability in OpenKM Community Edition 6.3.11, where the 'javascript&colon;' bypass in an <a> tag evades sanitization. The payload `<a href='javascript&colon;alert(1)'>Click here for more info</a>` demonstrates the issue, requiring user interaction to trigger.

Classification
Writeup 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: OpenKM Community Edition 6.3.11
Auth required
Prerequisites: Access to the notes section in OpenKM · User interaction to click the malicious link
MITRE ATT&CK
mistral-large-3 · analyzed Feb 19, 2026 Full analysis →

References (2)

Core 2
Core References
Patch, Third Party Advisory x_refsource_misc
https://github.com/openkm/document-management-system/pull/336
Exploit, Third Party Advisory x_refsource_misc
https://github.com/izdiwho/CVE-2022-40317

Scores

CVSS v3 5.4
EPSS 0.0089
EPSS Percentile 55.2%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Details

CWE
CWE-79
Status published
Products (1)
openkm/openkm 6.3.11
Published Sep 09, 2022
Tracked Since Feb 18, 2026