3 matches found
CVE-2022-47415
Technical details about CVE-2022-47415 are not publicly available in the provided Connected documents. Monitor official advisories and CVE listings for affected products, impact, and available patches.
CVE-2022-47415 LogicalDOC Messaging Stored XSS
LogicalDOC Enterprise and Community Edition CE are vulnerable to a stored persistent, or "Type II" cross-site scripting XSS condition in the in-app messaging system both subject and message bodies...
Multiple DMS XSS (CVE-2022-47412 through CVE-20222-47419)
Through the course of routine security testing and analysis, Rapid7 has discovered several issues in on-premises installations of open source and freemium Document Management System DMS offerings from four vendors. While all of the discovered issues are instances of CWE-79: Improper Neutralizatio...