3 matches found
CVE-2022-36965
The CVE-2022-36965 entry concerns SolarWinds Orion Platform’s QoE application, where insufficient sanitization of inputs in the QoE input field could enable stored and DOM-based XSS. The issue is documented as fixed in SolarWinds Platform version 2022.3.0. Affected component: QoE input handling; ...
CVE-2022-36965 Stored and DOM XSS in QoE Applications: Orion Platform
Insufficient sanitization of inputs in QoE application input field could lead to stored and Dom based XSS attack. This issue is fixed and released in SolarWinds Platform 2022.3.0...
SolarWinds Orion Platform < 2022.3 Multiple Vulnerabilities
The version of SolarWinds Orion Platform installed on the remote host is prior to 2022.3. It is, therefore, affected by multiple vulnerabilities as referenced in the solarwindsplatform20223 advisory. - A vulnerable component of Orion Platform was vulnerable to SQL Injection, an authenticated...