CVE-2022-50952

Name of the Vulnerable Software and Affected Versions Banco Guayaquil versions 8.0.0

Description The Banco Guayaquil mobile iOS application version 8.0.0 has a persistent cross-site scripting issue in the TextBox Name Profile input. An attacker can inject malicious script code via a POST request, which will execute when the application is reviewed, without requiring user interaction.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.