Vulnerability CVE-2022-40288
Published: 2022-10-31

Description:
The application was vulnerable to an authenticated Stored Cross-Site Scripting (XSS) in the user profile data fields, which could be leveraged to escalate privileges within and compromise any account that views their user profile.

 References:
https://www.themissinglink.com.au/security-advisories/cve-2022-40288
Copyright 2026, cxsecurity.com

 

Back to Top