3 matches found
CVE-2022-37028
ISAMS 22.2.3.2 is prone to stored Cross-site Scripting XSS attack on the title field for groups, allowing an attacker to store a JavaScript payload that will be executed when another user uses the application...
CVE-2022-37028
ISAMS 22.2.3.2 is prone to stored Cross-site Scripting XSS attack on the title field for groups, allowing an attacker to store a JavaScript payload that will be executed when another user uses the application...
PT-2022-23762 · Isams · Isams
Name of the Vulnerable Software and Affected Versions: ISAMS version 22.2.3.2 Description: The issue allows an attacker to perform a stored Cross-site Scripting XSS attack by injecting a JavaScript payload into the title field for groups. This payload will be executed when another user uses the...