3 matches found
CVE-2022-42704
A cross-site scripting XSS vulnerability in Employee Service Center esc and Service Portal sp in ServiceNow Quebec, Rome, and San Diego allows remote attackers to inject arbitrary web script via the Standard Ticket Conversations widget...
CVE-2022-42704
A cross-site scripting XSS vulnerability in Employee Service Center esc and Service Portal sp in ServiceNow Quebec, Rome, and San Diego allows remote attackers to inject arbitrary web script via the Standard Ticket Conversations widget...
CVE-2022-42704
CVE-2022-42704 is a cross-site scripting (XSS) vulnerability in ServiceNow’s Employee Service Center (ESC) and Service Portal (SP) affecting Quebec through San Diego releases. The issue allows remote attackers to inject arbitrary web script via the Standard Ticket Conversations widget, with impac...