Vulnerabilities (CVE)

Filtered by vendor Ragic Subscribe
Filtered by product Ragic
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-40739 1 Ragic 1 Ragic 2024-02-28 N/A 5.4 MEDIUM
Ragic report generation page has insufficient filtering for special characters. A remote attacker with general user privilege can inject JavaScript to perform XSS (Reflected Cross-Site Scripting) attack.