CVE-2022-34550
The CVE-2022-34550 issue affects Sims v1.0, where a cross-site scripting (XSS) vulnerability exists in the/addNotifyServlet. It allows an attacker to inject arbitrary web scripts/HTML via the notifyInfo parameter, enabling user-facing script execution. The NVD entry lists CVSS v3.1 base metrics (...