Cross-site scripting vulnerability in Palo Alto Networks MineMeld version 0.9.60 and earlier may allow a remote attacker able to convince an authenticated MineMeld admin to type malicious input in the MineMeld UI could execute arbitrary JavaScript code in the adminβs browser.
[
{
"product": "MineMeld",
"vendor": "Palo Alto Networks",
"versions": [
{
"status": "affected",
"version": "0.9.60 and earlier"
}
]
}
]