Security Advisory
CVE-2023-41642
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Multiple reflected cross-site scripting (XSS) vulnerabilities in the ErroreNonGestito.aspx component of GruppoSCAI RealGimm 1.1.37p38 allow attackers to execute arbitrary Javascript in the context of a victim users browser via a crafted payload injected into the VIEWSTATE parameter.