CVE-2022-36277 Information

Description

The ‘sReferencia’ ‘sDescripcion’ ’txtCodigo’ and ’txtDescripcion’ parameters in the frmGestionStock.aspx and frmEditServicio.aspx files in TCMAN GIM v8.0.1 could allow an attacker to perform persistent XSS attacks.

Reference

https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-tcman-gim