CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 1CVE-2022-47418 – LogicalDOC Document Version Comment Stored XSS
https://notcve.org/view.php?id=CVE-2022-47418
07 Feb 2023 — LogicalDOC Enterprise and Community Edition (CE) are vulnerable to a stored (persistent, or "Type II") cross-site scripting (XSS) condition in the document version comments. • https://www.rapid7.com/blog/post/2023/02/07/multiple-dms-xss-cve-2022-47412-through-cve-20222-47419 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 1CVE-2022-47417 – LogicalDOC Document File Name Stored XSS
https://notcve.org/view.php?id=CVE-2022-47417
07 Feb 2023 — LogicalDOC Enterprise and Community Edition (CE) are vulnerable to a stored (persistent, or "Type II") cross-site scripting (XSS) condition in the document file name. • https://www.rapid7.com/blog/post/2023/02/07/multiple-dms-xss-cve-2022-47412-through-cve-20222-47419 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2022-47416 – LogicalDOC Chat Stored XSS
https://notcve.org/view.php?id=CVE-2022-47416
07 Feb 2023 — LogicalDOC Enterprise is vulnerable to a stored (persistent, or "Type II") cross-site scripting (XSS) condition in the in-app chat system. • https://www.rapid7.com/blog/post/2023/02/07/multiple-dms-xss-cve-2022-47412-through-cve-20222-47419 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 1CVE-2022-47415 – LogicalDOC Messaging Stored XSS
https://notcve.org/view.php?id=CVE-2022-47415
07 Feb 2023 — LogicalDOC Enterprise and Community Edition (CE) are vulnerable to a stored (persistent, or "Type II") cross-site scripting (XSS) condition in the in-app messaging system (both subject and message bodies). • https://www.rapid7.com/blog/post/2023/02/07/multiple-dms-xss-cve-2022-47412-through-cve-20222-47419 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •