CVE-2022-48020
CVE-2022-48020 affects Vinteo VCC v2.36.4. The vulnerability is a reflected cross-site scripting (XSS) flaw exposed via the conference parameter, allowing an attacker to inject code that runs in the victim’s browser. According to the sources, the attack is network-based with low attack complexity...