2 matches found
PT-2022-17205 · Cerebrate · Cerebrate
Name of the Vulnerable Software and Affected Versions: Cerebrate versions through 1.4 Description: An issue was discovered that allows reflected XSS in form descriptions via a user-controlled description. This occurs in the genericForm component. Recommendations: For versions through 1.4, as a...
PT-2022-17206 · Cerebrate · Cerebrate
Name of the Vulnerable Software and Affected Versions: Cerebrate versions through 1.4 Description: An issue was discovered that allowed an unprivileged user to edit and modify sharing groups due to an incorrect sharing group ACL. Recommendations: For versions through 1.4, as a temporary workaroun...