CVE-2024-41514
CADClick v1.11.0 and earlier is affected by a reflected XSS in PrevPgGroup.aspx, exploitable via the wer parameter to inject arbitrary script/HTML. Affected component: PrevPgGroup.aspx on CADClick; root cause: reflected XSS. Impact stated: remote attackers can run script in the victim’s browser (...