Security advisories, writeups and articles Security Advisories CVE Title Date CVE-2022-27978 Unauthorized password manipulation in ToolJet Server 2022/03/20 CVE-2022-27979 Persistent XSS in ToolJet Server 2022/03/20
A cross-site scripting (XSS) vulnerability in ToolJet v1.6.0 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the Comment Body component.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
tooljet tooljet 1.6.0 |