| |
Vulnerability CVE-2022-23166
Published: 2022-05-12
| Description: |
Sysaid ?? Sysaid Local File Inclusion (LFI) ?? An unauthenticated attacker can access to the system by accessing to "/lib/tinymce/examples/index.html" path. in the "Insert/Edit Embedded Media" window Choose Type : iFrame and File/URL : [here is the LFI] Solution: Update to 22.2.20 cloud version, or to 22.1.64 on premise version. |
References: |
https://www.gov.il/en/departments/faq/cve_advisories
|
|
|
Copyright 2026, cxsecurity.com
|
|
|
