Vulnerability Details CVE-2022-38357
Improper neutralization of special elements leaves the Eyes of Network Web application vulnerable to an iFrame injection attack, via the url parameter of /module/module_frame/index.php.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 61.8%
CVSS Severity
CVSS v3 Score 8.8
References
Products affected by CVE-2022-38357
-
cpe:2.3:a:eyeofnetwork:eyes_of_network_web:5.3