CVE-2022-24227
BoltWire exposes a documented XSS vulnerability (CVE-2022-24227) affecting v7.10 and v8.00 where an attacker can inject arbitrary scripts/HTML via crafted input in the name and lastname fields. The Red Hat/PRION/CNNVD entries corroborate the same issue. Remediation guidance from PT-2022-16547 rec...