Reflected and Stored XSS Vulnerability in Heimdall Application Dashboard

Reflected and Stored XSS Vulnerability in Heimdall Application Dashboard

CVE-2022-47968 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Heimdall Application Dashboard through 2.5.4 allows reflected and stored XSS via "Application name" to the "Add application" page. The stored XSS will be triggered in the "Application list" page.

Learn more about our Web Application Penetration Testing UK.