CVE-2022-40778 Information

Description

A stored Cross-Site Scripting (XSS) vulnerability in OPSWAT MetaDefender ICAP Server before 4.13.0 allows attackers to execute arbitrary JavaScript or HTML because of the blocked page response.

Reference

https://www.opswat.com/products/metadefender/icap https://docs.opswat.com/mdicap/release-notes