CVE-2021-37467
CVE-2021-37467 affects NCH Quorum v2.03 and earlier. It describes a reflected cross-site scripting (XSS) vulnerability that occurs via the parameter confid in the URL /conferencebrowseuploadfile?confid=. The root cause, as stated, is improper handling/unsanitized user input, leading to client-sid...