CVE-2022-34834

CVE-2022-34834

EPSS 0.4%

An issue was discovered in VERMEG AgileReporter 21.3. Attackers can gain privileges via an XSS payload in an Add Comment action to the Activity log.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://crashpark.weebly.com/blog/2-stored-xss-in-agilereporter-213-by-vermeg https://www.vermeg.com/agile-reporter/