Security Advisory

CVE-2022-28703

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-12-19 10:00:14

Last updated 2025-04-15 18:39:02

Assigner talos

State PUBLISHED

Description

A stored cross-site scripting vulnerability exists in the HdConfigActions.aspx altertextlanguages functionality of Lansweeper lansweeper 10.1.1.0. A specially-crafted HTTP request can lead to arbitrary Javascript code injection. An attacker can send an HTTP request to trigger this vulnerability.

← Browse all CVEs View on cve.org ↗