2 matches found
CVE-2022-30982
CVE-2022-30982 affects Gentics CMS prior to 5.43.1 with a stored XSS vulnerability in profile descriptions and usernames. Connected documents corroborate the issue and specify vulnerable versions (before 5.43.1) and a fix in 5.43.1 or higher. No exploitation details are provided in the sources; m...
Gentics CMS 5.36.29 Cross Site Scripting / Deserialization
SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Stored Cross-Site Scripting & Unsafe Java Deserializiation product: Gentics CMS vulnerable version: 5.36.29, see section below fixed version: 5.40.27, 5.41.15, 5.42.7,...