Headline
CVE-2022-38106: SolarWinds Trust Center Security Advisories | CVE-2022-38106
This vulnerability happens in the web client versions 15.3.0 to Serv-U 15.3.1. This vulnerability affects the directory creation function.
Security Advisory Summary
Cross-site scripting vulnerability in Serv-U versions 15.3.0 to 15.3.1 The vulnerability happens when a non-privileged user creates a new folder in Serv-U web client option and enters the payload.
Affected Products
- Serv-U 15.3.0
- Serv-U 15.3.1
Fixed Software Release
- Serv-U 15.3.2
Acknowledgments
- Balaji Ayyasamy