Medium severity5.4NVD Advisory· Published Nov 14, 2022· Updated Jun 17, 2026
CVE-2022-43342
CVE-2022-43342
Description
A stored cross-site scripting (XSS) vulnerability in the Add function of Eramba GRC Software c2.8.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the KPI Title text field.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Eramba/GRC Softwaredescription
- Range: c2.8.1
Patches
Vulnerability mechanics
References
2- www.eramba.orgnvdExploitVendor Advisory
- discussions.eramba.org/t/question-stored-xss-vulnerability/2326nvdVendor Advisory
News mentions
0No linked articles in our index yet.