Vulnerability CVE-2022-42989


Published: 2022-11-22

Description:
ERP Sankhya before v4.11b81 was discovered to contain a cross-site scripting (XSS) vulnerability via the component Caixa de Entrada.

See advisories in our WLB2 database:
Topic
Author
Date
Low
ERP Sankhya 4.13.x Cross Site Scripting
Lucas Alves Da C...
26.10.2022

Type:

CWE-79

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

 References:
https://github.com/0xLUC4S/CVEs/blob/main/SankhyaERP_XSS_Account_Takeover.txt
http://erp.com
http://sankhya.com

Copyright 2024, cxsecurity.com

 

Back to Top