What the vulnerability does

01Description

An authenticated high privileged user can perform a stored XSS attack due to incorrect output encoding in Incapptic connect and affects all current versions.

Key dates

02Disclosure timeline

April 11, 2022 CVE published
August 3, 2024 Record updated