2023-10-30 00:00:00
mitre
PUBLISHED
A stored XSS in the process overview (bersicht zugewiesener Vorgaenge) in mbsupport openVIVA c2 20220101 allows a remote, authenticated, low-privileged attacker to execute arbitrary code in the victims browser via name field of a process.