CVE-2022-47414
- Reference to the description:
- Description:
- If an attacker has access to the console for OpenKM (and is authenticated), a stored XSS vulnerability is reachable in the document "note" functionality.
- Last updated date:
- 02/15/2023
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 02/15/2023
- Reference url to background
https://www.rapid7.com/blog/post/2023/02/07/multiple-dms-xss-cve-2022-47412-through-cve-20222-47419/