Security Advisory

CVE-2022-21145

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-04-14 19:56:34

Last updated 2025-04-15 19:06:04

Assigner talos

State PUBLISHED

Description

A stored cross-site scripting vulnerability exists in the WebUserActions.aspx functionality of Lansweeper lansweeper 9.1.20.2. A specially-crafted HTTP request can lead to arbitrary Javascript code injection. An attacker can send an HTTP request to trigger this vulnerability.

← Browse all CVEs View on cve.org ↗