CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-40912

ETAP Lighting International NV ETAP Safety Manager 1.0.0.32 is vulnerable to Cross Site Scripting (XSS). Input passed to the GET parameter 'action' is not properly sanitized before being returned to the user. This can be exploited to execute arbitrary HTML/JS code in a user's browser session in context of an affected site.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 30.7%

CVSS Severity

CVSS v3 Score 6.1

References

https://www.zeroscience.mk/en/vulnerabilities/ZSL-2022-5711.php
https://www.zeroscience.mk/en/vulnerabilities/ZSL-2022-5711.php

Products affected by CVE-2022-40912

Etaplighting » Etap Safety Manager » Version: 1.0.0.32

cpe:2.3:a:etaplighting:etap_safety_manager:1.0.0.32

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-40912

Products

Pricing

Contact Us