CVE-2022-23068

ToolJet versions v0.6.0 to v1.10.2 are vulnerable to HTML injection where an attacker can inject malicious code inside the first name and last name field while inviting a new user which will be reflected in the invitational e-mail.
Configurations

Configuration 1

cpe:2.3:a:tooljet:tooljet:*:*:*:*:*:*:*:*

Information

Published : 2022-05-18 02:15

Updated : 2022-05-26 05:11


NVD link : CVE-2022-23068

Mitre link : CVE-2022-23068

Products Affected
No products.
CWE