CVE-2022-37028 Information

Description

ISAMS 22.2.3.2 is prone to stored Cross-site Scripting (XSS) attack on the title field for groups allowing an attacker to store a JavaScript payload that will be executed when another user uses the application.

Reference

https://www.isams.com/ https://excellium-services.com/cert-xlm-advisory/CVE-2022-37028