A stored XSS in the process overview (bersicht zugewiesener Vorgaenge) in mbsupport openVIVA c2 20220101 allows a remote, authenticated, low-privileged malicious user to execute arbitrary code in the victim's browser via name field of a process.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
viva-project openviva |