CVE-2022-41611
15.11.2022, 15:15
Cross-site Scripting (XSS) vulnerability in BlueSpiceDiscovery skin of BlueSpice allows user with admin privileges to inject arbitrary HTML into the main navigation of the application.
| Vendor | Product | Version |
|---|---|---|
| hallowelt | bluespice | 4.1.0 ≤ 𝑥 < 4.2.1 |
𝑥
= Vulnerable software versions