Vulnerabilities > Smartics > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-27 | CVE-2022-2140 | Cross-site Scripting vulnerability in Smartics 2.3.4.0 Elcomplus SmartICS v2.3.4.0 does not neutralize user-controllable input, which allows an authenticated user to inject arbitrary code into specific parameters. | 9.0 |