CVE-2022-47075

Published: 2023-02-28T23:15Z

Last Modified: 2025-03-18T15:15Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

An issue was discovered in Smart Office Web 20.28 and earlier allows attackers to download sensitive information via the action name parameter to ExportEmployeeDetails.aspx, and to ExportReportingManager.aspx. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt