Spiceworks Version <= 7.5.00107 is affected by XSS. Any name typed on Custom Groups function is vulnerable to stored XSS as they displayed on 127.0.0.1/inventory/groups/ without output sanitization.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
spiceworks spiceworks |