Security Advisory

CVE-2022-39035

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-09-28 03:25:40

Last updated 2025-05-21 14:50:02

Assigner twcert

State PUBLISHED

Description

Smart eVision has insufficient filtering for special characters in the POST Data parameter in the specific function. An unauthenticated remote attacker can inject JavaScript to perform XSS (Stored Cross-Site Scripting) attack.

← Browse all CVEs View on cve.org ↗