Verint Engagement Management is a unified platform for knowledge management, process management, case management, email management, live chat, co-browsing and more. A cross-site scripting vulnerability exists in Verint Engagement Management version 15.3 Update 2023R2, which stems from the lack of effective filtering and escaping of user-supplied data in user data forms, and can be exploited by an attacker to execute arbitrary Web script or HTML by injecting a crafted payload.