3 matches found
CVE-2022-45014
A cross-site scripting XSS vulnerability in the Search Settings module of WBCE CMS v1.5.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Results Header field...
CVE-2022-45014
A cross-site scripting XSS vulnerability in the Search Settings module of WBCE CMS v1.5.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Results Header field...
CVE-2022-45014
CVE-2022-45014 is an XSS vulnerability in WBCE CMS v1.5.4, stemming from the Search Settings module’s Results Header field where user-supplied data isn’t properly filtered/escaped. The impact is arbitrary script/HTML execution in the user's browser; no in-document exploitation status is provided....