Vulnerabilities > Eova

DATE CVE VULNERABILITY TITLE RISK
2022-03-20 CVE-2022-26555 Cross-site Scripting vulnerability in Eova 1.6.0
A stored cross-site scripting (XSS) vulnerability in the Add a Button function of Eova v1.6.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the button name text box.
network
low complexity
eova CWE-79
5.4
5.4