A stored cross-site scripting (XSS) vulnerability exists in OpenKM version 7.1.40.
CVE-2023-50072 A stored cross-site scripting (XSS) vulnerability exists in OpenKM version 7140 (dbb6e88) With Professional Extension that allows an authenticated user to upload a note on a file which acts as a stored XSS payload Any user who opens the note of a document file will trigger the XSS Vulerable Parameter: text Exploit - Proof of Concept (POC) Reflect cross-site s