Lucene search
MitreCVELIST:CVE-2022-48177HistoryApr 15, 2023 - 12:00 a.m.
CVE-2022-48177
2023-04-1500:00:00
mitre
www.cve.org
x2crm
sales crm
xss
vulnerability
javascript
browser
0.001 Low
EPSS
Percentile
34.6%
X2CRM Open Source Sales CRM 6.6 and 6.9 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the adin/importModels Import Records Model field (model parameter). This vulnerability allows attackers to create malicious JavaScript that will be executed by the victim user’s browser.
Related
cve
cve
CVE-2022-48177
2023-04-15 01:15:06
prion
prion
Cross site scripting
2023-04-15 01:15:00
zdt
zdt
nvd
nvd
CVE-2022-48177
2023-04-15 01:15:06
exploitdb
exploitdb
X2CRM v6.6/6.9 - Reflected Cross-Site Scripting (XSS) (Authenticated)
2023-04-08 00:00:00
packetstorm
packetstorm
X2CRM 6.6 / 6.9 Cross Site Scripting
2023-04-10 00:00:00