9 matches found
EUVD-2022-48338
Malicious code in bioql PyPI...
CVE-2022-45472
CAE LearningSpace Enterprise with Intuity License image 267r patch 639 allows DOM XSS, related to ontouchmove and onpointerup...
CAE LearningSpace Enterprise Cross-Site Scripting Vulnerability
CAE LearningSpace Enterprise is a clinical simulation management platform from CAE Canada, Inc. CAE LearningSpace Enterprise with Intuity License image 267r patch 639 contains a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data b...
CVE-2022-45472
CAE LearningSpace Enterprise with Intuity License image 267r patch 639 allows DOM XSS, related to ontouchmove and onpointerup...
CVE-2022-45472
CAE LearningSpace Enterprise with Intuity License image 267r patch 639 allows DOM XSS, related to ontouchmove and onpointerup...
Design/Logic Flaw
CAE LearningSpace Enterprise with Intuity License image 267r patch 639 allows DOM XSS, related to ontouchmove and onpointerup...
CVE-2022-45472
CAE LearningSpace Enterprise with Intuity License image 267r patch 639 allows DOM XSS, related to ontouchmove and onpointerup...
CVE-2022-45472
CAE LearningSpace Enterprise with Intuity License image 267r patch 639 allows DOM XSS, related to ontouchmove and onpointerup...
CVE-2022-45472
CVE-2022-45472 affects CAE LearningSpace Enterprise (with Intuity License) image 267r patch 639. The vulnerability is DOM-based XSS triggered by ontouchmove and onpointerup, allowing injection of script and potential UI/data impact. Root cause relates to insufficient input filtering/escaping of u...