cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2022-32286,https://securityvulnerability.io/vulnerability/CVE-2022-32286,Cross Site Scripting Vulnerability in Mendix SAML Module by Mendix,"A Cross Site Scripting (XSS) vulnerability has been identified in the Mendix SAML Module, affecting multiple versions across Mendix 7, 8, and 9. This issue arises from inadequate sanitation of error messages, which can be exploited by attackers. By luring users into accessing malicious links, attackers may execute harmful scripts, compromising user security and exposing sensitive information. It is crucial for organizations using these Mendix SAML Modules to address this vulnerability to protect against potential exploits.",Siemens,"Mendix Saml Module (mendix 7 Compatible),Mendix Saml Module (mendix 8 Compatible),Mendix Saml Module (mendix 9 Compatible)",6.1,MEDIUM,0.0005799999926239252,false,,false,false,false,,false,false,2022-06-14T09:22:20.000Z,0
CVE-2022-32285,https://securityvulnerability.io/vulnerability/CVE-2022-32285,XML External Entity Vulnerability in Mendix SAML Modules,"A vulnerability has been identified in the Mendix SAML Module across various Mendix versions, which allows for potential exploitation through XML External Entity (XXE) attacks. This type of vulnerability occurs due to inadequate input sanitation, making it possible for attackers to access and disclose sensitive information in specific scenarios. It is crucial for users of the affected Mendix SAML Modules to update their installations to the latest versions to mitigate the risk of exploitation.",Siemens,"Mendix Saml Module (mendix 7 Compatible),Mendix Saml Module (mendix 8 Compatible),Mendix Saml Module (mendix 9 Compatible)",7.5,HIGH,0.0012799999676644802,false,,false,false,false,,false,false,2022-06-14T09:22:19.000Z,0