4 matches found
CVE-2022-45890
In Planet eStream before 6.72.10.07, a Reflected Cross-Site Scripting XSS vulnerability exists via any metadata filter field e.g., search within Default.aspx with the r or fo parameter...
CVE-2022-45890
creationtimestamp| type| source ---|---|--- 2022-12-25 07:40:04+00:00| seen| https://t.me/cibsecurity/55306 2025-04-14 17:54:17+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/11658...
CVE-2022-45890
Planet eStream (Planet Enterprises Ltd) before version 6.72.10.07 is vulnerable to a Reflected Cross-Site Scripting (XSS) issue via any metadata filter field (e.g., Default.aspx with the r or fo parameter). Root cause: unfiltered/unescaped user input reflected by the application. Impact: potentia...
CVE-2022-45890
In Planet eStream before 6.72.10.07, a Reflected Cross-Site Scripting XSS vulnerability exists via any metadata filter field e.g., search within Default.aspx with the r or fo parameter...