Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown
CVE-2022-32555
Disclosure Date: September 13, 2022 (last updated October 08, 2023)
Unisys Data Exchange Management Studio before 6.0.IC2 and 7.x before 7.0.IC1 doesn't have an Anti-CSRF token to authenticate the POST request. Thus, a cross-site request forgery attack could occur.
0
Attacker Value
Unknown
CVE-2020-35542
Disclosure Date: April 27, 2021 (last updated February 22, 2025)
Unisys Data Exchange Management Studio through 5.0.34 doesn't sanitize the input to a HTML document field. This could be used for an XSS attack.
0
