Vuln ID: CVE-2022-39035

Published:  2022-09-28  04:15:15Z

Description: Smart eVision has insufficient filtering for special characters in the POST Data parameter in the specific function. An unauthenticated remote attacker can inject JavaScript to perform XSS (Stored Cross-Site Scripting) attack.

Source: NVD.NIST.GOV