Qdecoder · Qdecoder · CVE-2022-32265
**Name of the Vulnerable Software and Affected Versions**
qDecoder versions prior to 12.1.0
**Description**
The issue arises from the failure to ensure that the percent character is followed by two hex digits for URL decoding. This can lead to potential security issues.
**Recommendations**
For versions prior to 12.1.0, update to version 12.1.0 or later to resolve the issue. As a temporary workaround, consider implementing additional validation for URL decoding to ensure the percent character is properly followed by two hex digits.