VMware vRealize Log Insight in versions before 8.8.2 contain a stored cross-site scripting vulnerability due to improper input sanitization in configurations.
vmware vrealize log insight