← Back to CVE List
CVE-2022-3893
Cross-site Scripting (XSS) vulnerability in BlueSpiceCustomMenu extension of BlueSpice allows user with admin permissions to inject arbitrary HTML into the custom menu navigation of the application.
> MITRE Terms of Use apply – see LICENSE‑MITRE.txt