Cross Site Scripting vulnerability in Grocy v.4.0.3 allows a local malicious user to execute arbitrary code and obtain sensitive information via the equipment description component within /equipment/ component.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
grocy project grocy 4.0.3 |
Vulmon