Cross Site Scripting vulnerability in Grocy v.4.0.3 allows a local malicious user to execute arbitrary code and obtain sensitive information via the equipment description component within /equipment/ component.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
grocy project grocy 4.0.3 |