CVE-2021-43960

Lorensbergs Connect2 3.13.7647.20190 is affected by an XSS vulnerability. Exploitation requires administrator privileges and is performed through the Wizard editor of the application. The attack requires an administrator to go into the Wizard editor and enter an XSS payload within the Page title,...

CVE-2021-43960

Lorensbergs Connect2 3.13.7647.20190 is affected by an XSS vulnerability. Exploitation requires administrator privileges and is performed through the Wizard editor of the application. The attack requires an administrator to go into the Wizard editor and enter an XSS payload within the Page title,...

Cross site scripting

DISPUTED Lorensbergs Connect2 3.13.7647.20190 is affected by an XSS vulnerability. Exploitation requires administrator privileges and is performed through the Wizard editor of the application. The attack requires an administrator to go into the Wizard editor and enter an XSS payload within the Pa...

CVE-2021-43960

Lorensbergs Connect2 3.13.7647.20190 is affected by a cross-site scripting (XSS) vulnerability. An administrator can inject an XSS payload through the Wizard editor by entering it in fields such as Page title, Page Instructions, Text before, Text after, or Text on side box and saving; the payload...

Lorensbergs Connect2 跨站脚本漏洞

Lorensbergs Connect2 is a one-stop booking software solution for all university campus resources, events and student services from Lorensbergs UK. A cross-site scripting vulnerability exists in Lorensbergs Connect2 version 3.13.7647.20190, which originates in the wizard editor for "Page Title",...

PT-2022-11957 · Lorensbergs · Lorensbergs Connect2

Name of the Vulnerable Software and Affected Versions: Lorensbergs Connect2 version 3.13.7647.20190 Description: The issue concerns an XSS vulnerability that requires administrator privileges to exploit. It is performed through the Wizard editor of the application, where an administrator must ent...