2 matches found
CVE-2022-40912
ETAP Lighting International NV ETAP Safety Manager 1.0.0.32 is vulnerable to Cross Site Scripting XSS. Input passed to the GET parameter 'action' is not properly sanitized before being returned to the user. This can be exploited to execute arbitrary HTML/JS code in a user's browser session in...
CVE-2022-40912
CVE-2022-40912 affects ETAP Safety Manager 1.0.0.32. The vulnerability is a Cross-Site Scripting (XSS) flaw where input passed to the GET parameter action is not properly sanitized before being returned to the user, allowing arbitrary HTML/JS to execute in the victim’s browser within the affected...