3 matches found
CVE-2022-26263
Yonyou u8 v13.0 was discovered to contain a DOM-based cross-site scripting XSS vulnerability via the component /u8sl/WebHelp...
CVE-2022-26263
Yonyou u8 v13.0 was discovered to contain a DOM-based cross-site scripting XSS vulnerability via the component /u8sl/WebHelp...
CVE-2022-26263
CVE-2022-26263 — Yonyou U8 13.0 suffers a DOM-based cross-site scripting (XSS) vulnerability in the component /u8sl/WebHelp. The nuclei template confirms an attack where an attacker can inject arbitrary script in a victim’s browser context, potentially stealing cookie-based authentication credent...