CVE-2022-34007
N/A
N/A
Summary
EQS Integrity Line Professional through 2022-07-01 allows a stored XSS via a crafted whistleblower entry.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://eusanctions.integrityline.com
- https://www.integrityline.com/
- https://www.ush.it/team/ush/advisory-eqs-integrity-line/eqs_integrity_line.txt
- https://seclists.org/fulldisclosure/2022/Jul/1
- https://packetstormsecurity.com/files/167706/EQS-Integrity-Line-Cross-Site-Scripting-Information-Disclosure.html
- https://whistleblowingnetwork.org/Our-Work/Spotlight/Stories/The-Pitfalls-of-Closed-Source-Whistleblowing-Softw
References
- https://eusanctions.integrityline.com
- https://www.integrityline.com/
- https://www.ush.it/team/ush/advisory-eqs-integrity-line/eqs_integrity_line.txt
- https://seclists.org/fulldisclosure/2022/Jul/1
- https://packetstormsecurity.com/files/167706/EQS-Integrity-Line-Cross-Site-Scripting-Information-Disclosure.html
- https://whistleblowingnetwork.org/Our-Work/Spotlight/Stories/The-Pitfalls-of-Closed-Source-Whistleblowing-Softw
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.