An attacker can inject malicious code into user’s web session via this XSS. The Common Vulnerabilities and Exposures list this issue under “Cross-Site Scripting” and “Injection” as reference.
EyesOfNetwork Web Interface v5.3 was discovered to have a XSS via the component /lilac/main.php.
EyesOfNetwork Web Interface v5.3 was discovered to have a XSS via the component /lilac/main.php.
EyesOfNetwork Web Interface v5.3 was discovered to have a XSS via the component /lilac/main.php.
EyesOfNetwork Web Interface v5.3 was discovered to have a XSS via the component /lilac/main.php.
EyesOfNetwork Web Interface v5.3 was discovered to have a XSS via the component /lilac/main.php.
EyesOfNetwork Web Interface v5.3 was discovered to have a XSS via the component /lilac/main.php.
EyesOfNetwork Web Interface v5.3 was discovered to have a XSS via the component /lilac/main.php.
EyesOfNetwork Web Interface v5.3 was discovered to have a XSS via the component /lilac/main.php.
Summary
CVE-2022-41434 is a cross-site scripting vulnerability within the EyesOfNetwork Web Interface, version v5.3.
Timeline
Published on: 11/08/2022 01:15:00 UTC
Last modified on: 11/08/2022 15:13:00 UTC