0.001 Low
EPSS
Percentile
27.8%
A Universal Cross Site Scripting (UXSS) vulnerability in ClassLink OneClick Extension through 10.8 allows remote attackers to inject JavaScript into any webpage. NOTE: this issue exists because of an incomplete fix for CVE-2022-48612.
blog.zerdle.net/classlink/
blog.zerdle.net/classlink2/