CVE-2022-44002

Name of the Vulnerable Software and Affected Versions BACKCLICK Professional version 5.9.63

Description An issue was discovered due to insufficient output encoding of user-supplied data, making the web application vulnerable to cross-site scripting (XSS) at various locations.

Recommendations For BACKCLICK Professional version 5.9.63, consider implementing proper output encoding for user-supplied data to prevent cross-site scripting (XSS) attacks. As a temporary workaround, restrict access to sensitive areas of the web application until a proper fix is applied. At the moment, there is no information about a newer version that contains a fix for this vulnerability.