CVE-2022-40287 Information

Description

The application was found to be vulnerable to an authenticated Stored Cross-Site Scripting (XSS) vulnerability in messaging functionality leading to privilege escalation or a compromise of a targeted account.

Reference

https://www.themissinglink.com.au/security-advisories/cve-2022-40287