3 matches found
CVE-2022-4556
creationtimestamp| type| source ---|---|--- 2022-12-16 20:24:41+00:00| seen| https://t.me/cibsecurity/54771 2025-08-05 15:00:06+00:00| published-proof-of-concept| Telegram/pjCdkaPYm9FkTnXxup4bFVUrTLP1VgX6gwOCGLnwxjPbRGw 2025-08-07 21:02:24+00:00| seen|...
CVE-2022-4556 Alinto SOGo Identity SOGoUserDefaults.m _migrateMailIdentities cross site scripting
A vulnerability was found in Alinto SOGo up to 5.7.1 and classified as problematic. Affected by this issue is the function migrateMailIdentities of the file SoObjects/SOGo/SOGoUserDefaults.m of the component Identity Handler. The manipulation of the argument fullName leads to cross site scripting...
CVE-2022-4556
CVE-2022-4556 affects Alinto SOGo up to version 5.7.1. The vulnerability resides in Identity Handler’s function _migrateMailIdentities in SoObjects/SOGo/SOGoUserDefaults.m, where manipulating the fullName argument enables a stored cross-site scripting (XSS) condition. The issue can be triggered r...