2 matches found
CVE-2022-36967
In Progress WSFTP Server prior to version 8.7.3, multiple reflected cross-site scripting XSS vulnerabilities exist in the administrative web interface. It is possible for a remote attacker to inject arbitrary JavaScript into a WSFTP administrator's web session. This would allow the attacker to...
CVE-2022-36967
CVE-2022-36967 affects Progress WS_FTP Server versions prior to 8.7.3. The administrative web interface contains multiple reflected XSS vulnerabilities that allow a remote attacker to inject arbitrary JavaScript into a WS_FTP administrator’s web session, enabling code execution in the victim’s br...