2 matches found
PT-2022-25345 · Openkm · Openkm
Name of the Vulnerable Software and Affected Versions: OpenKM version 6.3.11 Description: The issue allows stored XSS related to the javascript: substring in an A element. This could potentially lead to malicious script execution when a user interacts with the affected element. Recommendations: F...
PT-2021-3438 · Fortinet · Fortiweb
Name of the Vulnerable Software and Affected Versions: FortiWeb versions 6.3.0 through 6.3.7 FortiWeb versions prior to 6.2.4 FortiWeb versions 6.3.11 and earlier Description: A blind SQL injection in the user interface of FortiWeb may allow an unauthenticated, remote attacker to execute arbitrar...