Medium severity4.8NVD Advisory· Published Apr 14, 2022· Updated Jun 17, 2026
CVE-2022-21145
CVE-2022-21145
Description
A stored cross-site scripting vulnerability exists in the WebUserActions.aspx functionality of Lansweeper lansweeper 9.1.20.2. A specially-crafted HTTP request can lead to arbitrary Javascript code injection. An attacker can send an HTTP request to trigger this vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2= 9.1.20.2+ 1 more
- (no CPE)range: = 9.1.20.2
- (no CPE)range: 9.1.20.2
Patches
Vulnerability mechanics
References
2- talosintelligence.com/vulnerability_reports/TALOS-2022-1442nvdExploitThird Party Advisory
- www.lansweeper.com/changelog/nvdRelease NotesVendor Advisory
News mentions
0No linked articles in our index yet.