CVE-2022-25772

A cross-site scripting XSS vulnerability in the web tracking component of Mautic before 4.3.0 allows remote attackers to inject executable javascript...

CVE-2022-25772

A cross-site scripting XSS vulnerability in the web tracking component of Mautic before 4.3.0 allows remote attackers to inject executable javascript...

PT-2022-17503 · Mautic · Mautic

Name of the Vulnerable Software and Affected Versions: Mautic versions prior to 4.3.0 Description: A cross-site scripting XSS vulnerability in the web tracking component allows remote attackers to inject executable javascript. The issue arises because the output of tracking metadata is not...