The "Add category" functionality inside the "Global Keywords" menu in "SeedDMS" version 6.0.18 and 5.1.25, is prone to stored XSS which allows an attacker to inject malicious javascript code.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2022-06-06T22:17:40

Updated: 2024-08-03T05:41:11.386Z

Reserved: 2022-03-28T00:00:00

Link: CVE-2022-28051

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-06-06T23:15:08.020

Modified: 2024-11-21T06:56:40.767

Link: CVE-2022-28051

cve-icon Redhat

No data.