Stored Cross-Site Scripting (XSS) Vulnerability in OPSWAT MetaDefender ICAP Server before 4.13.0

Stored Cross-Site Scripting (XSS) Vulnerability in OPSWAT MetaDefender ICAP Server before 4.13.0

CVE-2022-40778 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

A stored Cross-Site Scripting (XSS) vulnerability in OPSWAT MetaDefender ICAP Server before 4.13.0 allows attackers to execute arbitrary JavaScript or HTML because of the blocked page response.

Learn more about our Cis Benchmark Audit For Server Software.