2023-11-15 00:00:00
mitre
PUBLISHED
A Cross-Site Scripting (XSS) vulnerability in the product description component within /api/stock/products of Grocy version <= 4.0.3 allows attackers to obtain a victims cookies.