Cyclos 4 PRO is a web server. A cross-site scripting vulnerability exists in Cyclos 4 PRO version 4.14.7 and earlier, which can be exploited by remote attackers to inject arbitrary web scripts or HTML via the groupId parameter.
CPE | Name | Operator | Version |
---|---|---|---|
cyclos 4 pro cyclos 4 pro | le | 4.14.7 |