CVE-2022-27961
EUVD-2022-3244710.04.2022, 21:15
A cross-site scripting (XSS) vulnerability at /ofcms/company-c-47 in OFCMS v1.1.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Comment text box.
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| ofcms_project | ofcms | 1.1.4 |
𝑥
= Vulnerable software versions