3 matches found
CVE-2022-39054
Cowell enterprise travel management system has insufficient filtering for special characters within web URL. An unauthenticated remote attacker can inject JavaScript and perform XSS Reflected Cross-Site Scripting attack...
CVE-2022-39054 COWELL INFORMATION SYSTEM CO., LTD. enterprise travel management system - Reflected XSS
Cowell enterprise travel management system has insufficient filtering for special characters within web URL. An unauthenticated remote attacker can inject JavaScript and perform XSS Reflected Cross-Site Scripting attack...
CVE-2022-39054
CVE-2022-39054 concerns the Cowell enterprise travel management system. The vulnerability is a reflected XSS resulting from insufficient filtering of special characters in web URLs, enabling an unauthenticated remote attacker to inject JavaScript. The provided sources confirm the vulnerability de...