Security Advisory
CVE-2021-31673
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
A Dom-based Cross-site scripting (XSS) vulnerability at registration account in Cyclos 4 PRO.14.7 and before allows remote attackers to inject arbitrary web script or HTML via the groupId parameter.