6 matches found
EUVD-2022-29491
Malicious code in bioql PyPI...
CVE-2022-24612
An authenticated user can upload an XML file containing an XSS via the ITSM module of EyesOfNetwork 5.3.11, resulting in a stored XSS...
Cross site scripting
An authenticated user can upload an XML file containing an XSS via the ITSM module of EyesOfNetwork 5.3.11, resulting in a stored XSS...
CVE-2022-24612
An authenticated user can upload an XML file containing an XSS via the ITSM module of EyesOfNetwork 5.3.11, resulting in a stored XSS...
CVE-2022-24612
An authenticated user can upload an XML file containing an XSS via the ITSM module of EyesOfNetwork 5.3.11, resulting in a stored XSS...
CVE-2022-24612
EyesOfNetwork 5.3-11 is affected in its ITSM module by CVE-2022-24612: an authenticated user can upload an XML file containing JavaScript to trigger a stored cross-site scripting (XSS) vulnerability. The issue stems from processing the uploaded XML in the ITSM workflow, enabling stored XSS in aff...