CVE-2022-4554

Summary

B2B Customer Ordering System developed by ID Software Project and Consultancy Services before version 1.0.0.347 has an authenticated Reflected XSS vulnerability. This has been fixed in the version 1.0.0.347.

Affected Software

VendorProductVersion RangeStatus
ID Software Project and Consultancy ServicesB2B Customer Ordering System1.0.0.347 < 0affected

Weaknesses

  • CWE-79: CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

ADP Enrichment

CVE Program Container

Additional References

References