CVE-2022-42960 Information

Description

EqualWeb Accessibility Widget 2.0.0 2.0.1 2.0.2 2.0.3 2.0.4 2.1.10 3.0.0 3.0.1 3.0.2 4.0.0 and 4.0.1 allows DOM XSS due to improper validation of message events to accessibility.js.

Reference

https://www.imperva.com/blog/vulnerability-discovered-in-equalweb-accessibility-widget/