Security Advisory
CVE-2021-27528
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
A cross-site scripting (XSS) vulnerability in DynPG version 4.9.2 allows remote attackers to inject JavaScript via the "refID" parameter.