CVE-2021-3535
Rapid7 Nexpose Security Console is affected by a non-persistent Cross‑Site Scripting (XSS) vulnerability in the Filtered Asset Search feature. A specific combination of search criteria and operators could allow code to be passed through the search field. Affected versions are 6.6.80 and earlier; ...