CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

NVD•added 2022/10/31 7:15 a.m.•11 views

CVE-2022-39025

U-Office Force PrintMessage function has insufficient filtering for special characters. An unauthenticated remote attacker can exploit this vulnerability to inject JavaScript and perform XSS Reflected Cross-Site Scripting attack...

6.1CVSS0.00404EPSS

Exploits0References1

Prion•added 2022/10/31 7:15 a.m.•15 views

Cross site scripting

5.8CVSS6.1AI score0.00404EPSS

Exploits0References1Affected Software1

CVE•added 2022/10/31 6:40 a.m.•47 views

CVE-2022-39025

CVE-2022-39025 affects U-Office Force PrintMessage function, where insufficient filtering of special characters enables a reflected XSS if an unauthenticated, remote attacker injects JavaScript. The primary sources consistently describe a cross-site scripting vulnerability without specifying affe...

6.1CVSS6.2AI score0.00404EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2022/10/31 12:0 a.m.•3 views

PT-2022-24681 · U-Office · U-Office

Name of the Vulnerable Software and Affected Versions: U-Office affected versions not specified Description: The issue is related to insufficient filtering for special characters in the Force PrintMessage function. This allows an unauthenticated remote attacker to inject JavaScript, potentially...

6.1CVSS6AI score0.00404EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by