2 matches found
CVE-2022-34322
CVE-2022-34322 : Sage Enterprise Intelligence 2021 R1.1 contains multiple XSS bugs. One stored XSS via the Notify Users About Modification/Notifications features allows an authenticated attacker to execute JavaScript in other users’ browsers; also a self-XSS exists in the Favorites tab where a na...
CVE-2022-34322
Multiple XSS issues were discovered in Sage Enterprise Intelligence 2021 R1.1 that allow an attacker to execute JavaScript code in the context of users' browsers. The attacker needs to be authenticated to reach the vulnerable features. An issue is present in the Notify Users About Modification me...