VYPR
Medium severity4.8NVD Advisory· Published Apr 14, 2022· Updated Jun 17, 2026

CVE-2022-21145

CVE-2022-21145

Description

A stored cross-site scripting vulnerability exists in the WebUserActions.aspx functionality of Lansweeper lansweeper 9.1.20.2. A specially-crafted HTTP request can lead to arbitrary Javascript code injection. An attacker can send an HTTP request to trigger this vulnerability.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Lansweeper/Lansweeperllm-fuzzy2 versions
    = 9.1.20.2+ 1 more
    • (no CPE)range: = 9.1.20.2
    • (no CPE)range: 9.1.20.2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.