CVE Vulnerability
CVE-2022-39027
U-Office Force Forum function has insufficient filtering for special characters. A remote attacker with general user privilege can inject JavaScript and perform XSS (Stored Cross-Site Scripting) attack.
References
| Link | Resource |
|---|---|
| https://www.twcert.org.tw/tw/cp-132-6642-bf567-1.html | Third Party Advisory |
Configurations
Configuration 1
|
Information
Published : 2022-10-31 07:15
Updated : 2022-10-31 05:47
NVD link : CVE-2022-39027
Mitre link : CVE-2022-39027
Products Affected
No products.
CWE