CVE-2022-40317

CVE-2022-40317

EPSS 0.9%

OpenKM 6.3.11 allows stored XSS related to the javascript&colon; substring in an A element.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/izdiwho/CVE-2022-40317 https://github.com/openkm/document-management-system/pull/336