CVE-2022-28051

The "Add category" functionality inside the "Global Keywords" menu in "SeedDMS" version 6.0.18 and 5.1.25, is prone to stored XSS which allows an attacker to inject malicious javascript code.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:seeddms:seeddms:5.1.25:*:*:*:*:*:*:*
cpe:2.3:a:seeddms:seeddms:6.0.18:*:*:*:*:*:*:*

Information

Published : 2022-06-06 16:15

Updated : 2022-06-13 12:29


NVD link : CVE-2022-28051

Mitre link : CVE-2022-28051


JSON object : View

CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Advertisement

dedicated server usa

Products Affected

seeddms

  • seeddms