3 matches found
CVE-2025-22272
creationtimestamp| type| source ---|---|--- 2025-02-28 13:49:07+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ljakcxumyi2p 2025-02-28 13:49:10+00:00| seen| https://bsky.app/profile/potato.software/post/3ljakcys4iv2z 2025-02-28 15:21:28+00:00| seen| https://t.me/cvedetector/19154...
CVE-2025-22272 Self Reflected XSS in CyberArk Endpoint Privilege Manager
In the "/EPMUI/ModalDlgHandler.ashx?value=showReadonlyDlg" endpoint, it is possible to inject code in the "modalDlgMsgInternal" parameter via POST, which is then executed in the browser. The risk of exploiting vulnerability is reduced due to the required additional bypassing the...
CVE-2025-22272 Self Reflected XSS in CyberArk Endpoint Privilege Manager
In the "/EPMUI/ModalDlgHandler.ashx?value=showReadonlyDlg" endpoint, it is possible to inject code in the "modalDlgMsgInternal" parameter via POST, which is then executed in the browser. The risk of exploiting vulnerability is reduced due to the required additional bypassing the...