Cross-site scripting (XSS) vulnerability in OpenKM prior to 6.4.19 (build 23338) allows remote authenticated users to inject arbitrary web script or HTML via the Subject field in a Task to frontend/index.jsp.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
openkm openkm |