← back
CVE-2021-45422

CVE-2021-45422

EPSS 3.3%
Reprise License Manager 14.2 is affected by a reflected cross-site scripting vulnerability in the /goform/activate_process "count" parameter via GET. No authentication is required.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://reprise.comhttps://github.com/WlX-33/PoC-for-CVE/blob/main/CVE-2021-45422/RLM%2014.2%20Cross%20Site%20Scripting.txthttps://seclists.org/fulldisclosure/2022/Jan/31https://www.getinfosec.news/13202933/reprise-license-manager-142-reflected-cross-site-scripting#/