CVE-2022-48111 Information

Description

A cross-site scripting (XSS) vulnerability in the check_login function of SIPE s.r.l WI400 between version 8 and 11 included allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the f parameter.

Reference

http://wi400.com https://labs.yarix.com/advisories/CVE-2022-48111/ http://sipe.com