4 matches found
CVE-2023-5118
The application is vulnerable to Stored Cross-Site Scripting XSS in the endpoint /sofer/DocumentService.asc/SaveAnnotation, where input data transmitted via the POST method in the parameters author and text are not adequately sanitized and validated. This allows for the injection of malicious...
CVE-2023-5118 Stored cross-site scripting vulnerability in Kofax Capture software
The application is vulnerable to Stored Cross-Site Scripting XSS in the endpoint /sofer/DocumentService.asc/SaveAnnotation, where input data transmitted via the POST method in the parameters author and text are not adequately sanitized and validated. This allows for the injection of malicious...
Kofax Capture Cross-Site Scripting Vulnerability
Kofax Capture is an application from Kofax USA. It provides best-in-class pre-built intelligent document processing capabilities. A cross-site scripting vulnerability exists in Kofax Capture version 11.0.0 and earlier, which stems from the endpoint /sofer/DocumentService.asc/SaveAnnotation being...
PT-2024-14062 · Kofax +1 · Capture +1
Name of the Vulnerable Software and Affected Versions: Software versions prior to 11.1.x Description: The application is vulnerable to Stored Cross-Site Scripting XSS in the endpoint "/sofer/DocumentService.asc/SaveAnnotation", where input data transmitted via the POST method in the parameters...