CVE-2022-37028

ISAMS 22.2.3.2 is prone to stored Cross-site Scripting XSS attack on the title field for groups, allowing an attacker to store a JavaScript payload that will be executed when another user uses the application...

CVE-2022-37028

ISAMS 22.2.3.2 is vulnerable to a stored Cross-site Scripting (XSS) attack in the title field for groups. The vulnerability arises from insufficient input filtering/escaping of user-supplied data, allowing an attacker to store a JavaScript payload executed when another user accesses the applicati...

CVE-2022-37028

ISAMS 22.2.3.2 is prone to stored Cross-site Scripting XSS attack on the title field for groups, allowing an attacker to store a JavaScript payload that will be executed when another user uses the application...

PT-2022-23762 · Isams · Isams

Name of the Vulnerable Software and Affected Versions: ISAMS version 22.2.3.2 Description: The issue allows an attacker to perform a stored Cross-site Scripting XSS attack by injecting a JavaScript payload into the title field for groups. This payload will be executed when another user uses the...

ISAMS 跨站脚本漏洞

ISAMS is a 100% web-based MIS from ISAMS that can be accessed from anywhere, with multiple third-party integrations into the online learning platform. version 22.2.3.2 of ISAMS contains a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of...