CVE-2022-38357

Summary

Improper neutralization of special elements leaves the Eyes of Network Web application vulnerable to an iFrame injection attack, via the url parameter of /module/module_frame/index.php.

Affected Software

VendorProductVersion RangeStatus
n/aEyes of Network Web5.3affected

Weaknesses

  • Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

ADP Enrichment

CVE Program Container

Additional References

References