Stored Cross-Site Scripting (XSS) in Assets and Nodes in Guardian/CMC before 26.0.0
Summary A Stored Cross-Site Scripting vulnerability was discovered in the Assets and Nodes functionality due to improper validation of an input parameter. Impact An authenticated user with custom fields privileges can define a malicious custom field containing a JavaScript payload. When the victi...