2 matches found
CVE-2022-31358
A reflected cross-site scripting XSS vulnerability in Proxmox Virtual Environment prior to v7.2-3 allows remote attackers to execute arbitrary web scripts or HTML via non-existent endpoints under path /api2/html/...
CVE-2022-31358
CVE-2022-31358 is a reflected XSS in Proxmox Virtual Environment before v7.2-3. The issue allows remote attackers to execute arbitrary web scripts/HTML by accessing non-existent endpoints under /api2/html/. Affected software: Proxmox VE versions prior to 7.2-3. Root cause/impact: reflected XSS wi...