← volver
CVE-2022-34550

CVE-2022-34550

EPSS 0.4%
Sims v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the component /addNotifyServlet. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the notifyInfo parameter.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://cwe.mitre.org/data/definitions/79.htmlhttps://github.com/rawchen/sims/issues/8