CVE-2022-35416

EPSS 6.63% · P91 Updated Feb 25, 2026

Public Exploits 1

Nuclei · 1 CVE-2022-35416.yaml [template]

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2022-35416

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

H3C SSL VPN through 2022-07-10 allows wnm/login/login.json svpnlang cookie XSS.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

H3C SSL VPN 跨站脚本漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

H3C SSL VPN是中国新华三（H3C）公司的安全会话层VPN。 H3C SSL VPN 2022-07-10及以前版本存在安全漏洞，该漏洞源于允许 wnm/login/login.json svpnlang 跨站脚本攻击

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2022-35416

#	POC Description	Source Link	Shenlong Link
1	H3C_SSL_VPN_XSS(Reflected XSS) CVE-2022-35416	https://github.com/safe3s/CVE-2022-35416	POC Details
2	H3C SSL VPN 2022-07-10 and prior contains a cookie-based cross-site scripting vulnerability in wnm/login/login.json svpnlang.	https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2022/CVE-2022-35416.yaml	POC Details

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2022-35416

请登录查看更多情报信息。

https://github.com/Docker-droid/H3C_SSL_VPN_XSSx_refsource_MISC
https://nvd.nist.gov/vuln/detail/CVE-2022-35416

Same Patch Batch · n/a · 2022-07-11 · 99 CVEs total

CVE-2022-31564		munhak-moa 路径遍历漏洞
CVE-2022-31558		shiva-server 路径遍历漏洞
CVE-2022-31554		movie-review-sentiment-analysis 路径遍历漏洞
CVE-2022-31553		sleep-learner 路径遍历漏洞
CVE-2022-31552		anuvaad-corpus 路径遍历漏洞
CVE-2022-31551		flask-mongo-skel 路径遍历漏洞
CVE-2022-31550		pyathenastack 路径遍历漏洞
CVE-2022-31555		nursequest 路径遍历漏洞
CVE-2022-31562		internshipsystem 路径遍历漏洞
CVE-2022-31563		vprj 路径遍历漏洞
CVE-2022-31561		Sphere_ImageBackend 路径遍历漏洞
CVE-2022-31565		syrabond 路径遍历漏洞
CVE-2022-31566		DSAB 路径遍历漏洞
CVE-2022-31567		DSAB 路径遍历漏洞
CVE-2022-31568		rex-web 路径遍历漏洞
CVE-2022-31570		ceneo-web-scrapper 路径遍历漏洞
CVE-2022-31571		python-flask-restful-api 路径遍历漏洞
CVE-2022-31572		cockybook 路径遍历漏洞
CVE-2022-31573		chainerrl-visualizer 路径遍历漏洞
CVE-2022-31574		RealEstate 路径遍历漏洞

Showing top 20 of 99 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2022-35416

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2022-35416

Public Exploits 1

I. Basic Information for CVE-2022-35416

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2022-35416

III. Intelligence Information for CVE-2022-35416

Same Patch Batch · n/a · 2022-07-11 · 99 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2022-35416

Leave a comment