Y · Ruoyi-Cloud · CVE-2022-4348
**Name of the Vulnerable Software and Affected Versions**
y project RuoYi-Cloud (affected versions not specified)
**Description**
A vulnerability was found in the JSON Handler component of y project RuoYi-Cloud, which can be exploited to lead to cross site scripting. The attack may be launched remotely.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.