2 matches found
CVE-2022-41789
CVE-2022-41789 describes a Cross-site Scripting (XSS) vulnerability in the BlueSpiceDiscovery skin of BlueSpice. A logged-in user with edit permissions can inject arbitrary HTML into the default page header of a wiki page. CVSSv3.1 vectors in the entry show a base score of 5.4 (MEDIUM) with Netwo...
CVE-2022-41789 Potential XSS on default page header
Cross-site Scripting XSS vulnerability in BlueSpiceDiscovery skin of BlueSpice allows logged in user with edit permissions to inject arbitrary HTML into the default page header of a wikipage...