HTML Injection Vulnerability in Archer Platform 6.x before 6.11 P3

HTML Injection Vulnerability in Archer Platform 6.x before 6.11 P3

CVE-2022-37317 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Archer Platform 6.x before 6.11 P3 contain an HTML injection vulnerability. An authenticated remote attacker could potentially exploit this vulnerability by tricking a victim application user to execute malicious code in the context of the web application. 6.10 P4 (6.10.0.4) and 6.11 P2 HF4 (6.11.0.2.4) are also fixed releases.

Learn more about our Web App Pen Testing.