CVE-2022-4560
CVE-2022-4560 affects Joget up to version 7.0.31 in the wflow-core component. The vulnerability arises in the function getInternalJsCssLib of the file UniversalTheme.java where manipulating the key argument enables cross-site scripting. The issue can be remotely initiated. A fix is available in v...