Unknown · Passwork On-Premise Edition · CVE-2022-25269
**Name of the Vulnerable Software and Affected Versions**
Passwork On-Premise Edition versions prior to 4.6.13
**Description**
The issue is related to multiple XSS problems in the Passwork On-Premise Edition. This is due to the lack of protection measures for the web page structure, allowing a remote attacker to conduct a cross-site scripting (XSS) attack.
**Recommendations**
For Passwork On-Premise Edition versions prior to 4.6.13, update to version 4.6.13 or later to resolve the issue. As a temporary workaround, consider restricting access to potentially vulnerable web pages or modules until the update is applied.