Medium severity6.3NVD Advisory· Published Mar 10, 2022· Updated Jun 17, 2026
CVE-2022-21146
CVE-2022-21146
Description
Persistent cross-site scripting in the web interface of ipDIO allows an unauthenticated remote attacker to introduce arbitrary JavaScript by injecting an XSS payload into a specific parameter. The XSS payload will be executed when a legitimate user attempts to review history.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: 3.9
Patches
Vulnerability mechanics
References
1- www.cisa.gov/uscert/ics/advisories/icsa-22-062-01nvdMitigationThird Party AdvisoryUS Government Resource
News mentions
0No linked articles in our index yet.