Vulnerabilities > Fit2Cloud > Lina

DATE CVE VULNERABILITY TITLE RISK
2023-05-24 CVE-2022-42225 Cross-site Scripting vulnerability in Fit2Cloud Lina
Jumpserver 2.10.0 <= version <= 2.26.0 contains multiple stored XSS vulnerabilities because of improper filtering of user input, which can execute any javascript under admin's permission.
network
low complexity
fit2cloud CWE-79
5.4
5.4