CVE-2022-29380

Date: 25/05/2022
Author: OpenXP Team
Software: Academy LMS
Version: Academy LMS <= v4.3
Type: Cross-Site Scripting
OWASP TOP 10: A03:2021-Injection
CWE: CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

References: https://nvd.nist.gov/vuln/detail/CVE-2022-29380