Stored Cross-Site Scripting (XSS) in Reports in Guardian/CMC before 25.5.0
Summary A Stored Cross-Site Scripting vulnerability was discovered in the Reports functionality due to improper validation of an input parameter. Impact An authenticated user with report privileges can define a malicious report containing a JavaScript payload, or a victim can be socially engineer...