Cross Site Scripting (XSS) vulnerability in Things Board 3.4.1 allows remote malicious users to escalate privilege via crafted URL to the Audit Log.
thingsboard thingsboard 3.4.1