A stored XSS in the process overview (bersicht zugewiesener Vorgaenge) in mbsupport openVIVA c2 20220101 allows a remote, authenticated, low-privileged malicious user to execute arbitrary code in the victim's browser via name field of a process.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
viva-project openviva |
Vulmon