2 matches found
CVE-2022-28074
Halo-1.5.0 was discovered to contain a stored cross-site scripting XSS vulnerability via \admin\index.html/system/tools...
CVE-2022-28074
CVE-2022-28074 affects Halo-1.5.0 and is caused by a stored cross-site scripting (XSS) vulnerability reachable via the path admin\index.html#/system/tools. The connected documents confirm Halo-1.5.0 as the vulnerable product and identify XSS as the underlying issue, but do not provide detailed ex...