Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:42 a.m.11 views

CVE-2022-26088

An issue was discovered in BMC Remedy before 22.1. Email-based Incident Forwarding allows remote authenticated users to inject HTML such as an SSRF payload into the Activity Log by placing it in the To: field. This affects rendering that occurs upon a click in the "number of recipients" field...

5.4CVSS6.4AI score0.01012EPSS
Exploits3References1
0day.today
0day.today
added 2022/11/16 12:0 a.m.405 views

BMC Remedy ITSM-Suite 9.1.10 / 20.02 HTML Injection Vulnerability

======================================================================= title: HTML Injection product: BMC Remedy ITSM-Suite vulnerable version: 9.1.10 = 20.02 in new versioning scheme fixed version: 22.1 CVE number: CVE-2022-26088 impact: Low homepage:...

5.4CVSS0.01012EPSS
Exploits3
Packet Storm
Packet Storm
added 2022/11/15 12:0 a.m.283 views

BMC Remedy ITSM-Suite 9.1.10 / 20.02 HTML Injection

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: HTML Injection product: BMC Remedy ITSM-Suite vulnerable version: 9.1.10 = 20.02 in new versioning scheme fixed version: 22.1 CVE number: CVE-2022-26088 impact: Low...

5.6AI score0.01012EPSS
Exploits3
Vulnrichment
Vulnrichment
added 2022/11/10 12:0 a.m.7 views

CVE-2022-26088

An issue was discovered in BMC Remedy before 22.1. Email-based Incident Forwarding allows remote authenticated users to inject HTML such as an SSRF payload into the Activity Log by placing it in the To: field. This affects rendering that occurs upon a click in the "number of recipients" field...

5.3AI score0.01012EPSS
Exploits3References3
CVE
CVE
added 2022/11/10 12:0 a.m.66 views

CVE-2022-26088

CVE-2022-26088 affects BMC Remedy ITSM Suite prior to 22.1. Email-based Incident Forwarding can let remote authenticated users inject HTML (including SSRF payloads) into the Activity Log by placing content in the To: field, influencing rendering when the number of recipients is clicked. The vulne...

5.4CVSS5.2AI score0.01012EPSS
Exploits3References3Affected Software1
Rows per page
Query Builder