CVE-2022-30360
- Reference to the description:
- Description:
- OvalEdge 5.2.8.0 and earlier is affected by multiple Stored XSS (AKA Persistent or Type II) vulnerabilities via a POST request to /profile/updateProfile via the slackid or phone parameters. Authentication is required.
- Last updated date:
- 10/31/2024
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 10/31/2024
- Reference url to background
https://cve.offsecguy.com/ovaledge/vulnerabilities/stored-xss#cve-2022-30360