Metrics
Affected Vendors & Products
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
Fri, 01 Nov 2024 14:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | cpe:2.3:a:ysoft:safeq:6.0:build53:*:*:*:*:*:* |
Wed, 30 Oct 2024 16:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | cpe:2.3:a:ysoft:safeq:6.0:build_53:*:*:*:*:*:* |
Tue, 22 Oct 2024 19:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Ysoft
Ysoft safeq |
|
Weaknesses | CWE-79 | |
CPEs | cpe:2.3:a:ysoft:safeq:*:*:*:*:*:*:*:* | |
Vendors & Products |
Ysoft
Ysoft safeq |
|
Metrics |
cvssV3_1
|
Tue, 22 Oct 2024 16:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Multiple Stored Cross-Site Scripting vulnerabilities were discovered in Y Soft SAFEQ 6 Build 53. Multiple fields in the YSoft SafeQ web application can be used to inject malicious inputs that, due to a lack of output sanitization, result in the execution of arbitrary JS code. These fields can be leveraged to perform XSS attacks on legitimate users accessing the SafeQ web interface. | |
References |
|

Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-10-22T18:30:05.273Z
Reserved: 2022-01-24T00:00:00
Link: CVE-2022-23861

Updated: 2024-10-22T18:28:55.155Z

Status : Analyzed
Published: 2024-10-22T16:15:04.897
Modified: 2024-11-01T14:19:00.030
Link: CVE-2022-23861

No data.

No data.