CVE-2022-41611

Description

Cross-site Scripting (XSS) vulnerability in BlueSpiceDiscovery skin of BlueSpice allows user with admin privileges to inject arbitrary HTML into the main navigation of the application.

Related CPE's

a hallowelt bluespice ********

References

https://en.wiki.bluespice.com/wiki/Security:Security_Advisories/BSSA-2022-03

Vendor Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics

Created by Yello

About Severity.io