2 matches found
CVE-2022-43670
An improper neutralization of input during web page generation 'Cross-site Scripting' CWE-79 vulnerability in Sling App CMS version 1.1.0 and prior may allow an authenticated remote attacker to perform a reflected cross site scripting XSS attack in the taxonomy management feature...
CVE-2022-43670
CVE-2022-43670 affects Sling App CMS versions up to 1.1.0 and earlier. The issue is a reflected cross-site scripting (XSS) vulnerability in the taxonomy management feature caused by improper neutralization of input during web page generation. The CVE details indicate an authenticated remote attac...