2 matches found
CVE-2021-4035
CVE-2021-4035 corresponds to a stored XSS in Wocu Monitoring’s report-creation comments caused by an obsolete tinymce editor. Public materials (NVD/NVD-derived entries and CVE records) describe that an attacker must have an account with sufficient privileges to view/edit reports to exploit the is...
CVE-2021-4035 Wocu Monitoring stored Cross-Site Scripting (XSS)
A stored cross site scripting have been identified at the comments in the report creation due to an obsolote version of tinymce editor. In order to exploit this vulnerability, the attackers needs an account with enough privileges to view and edit reports...