Unrated severityNVD Advisory· Published Mar 6, 2023· Updated Feb 23, 2026
XSS vulnerability in M-Files Web
CVE-2022-4862
Description
Rendering of HTML provided by another authenticated user is possible in browser on M-Files Web before 22.12.12140.3. This allows the content to steal user sensitive information.
This issue affects M-Files New Web: before 22.12.12140.3.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: < 22.12.12140.3
- Range: 0
Patches
Vulnerability mechanics
References
3- empower.m-files.com/security-advisories/CVE-2022-4862mitrevendor-advisory
- product.m-files.com/security-advisories/cve-2022-4862/mitrevendor-advisory
- www.m-files.com/about/trust-center/security-advisories/cve-2022-4862/mitre
News mentions
0No linked articles in our index yet.