CVE-2021-31673
A Dom-based Cross-site scripting (XSS) vulnerability at registration account in Cyclos 4 PRO.14.7 and before allows remote attackers to inject arbitrary web script or HTML via the groupId parameter.
Date published : 2022-05-01
http://packetstormsecurity.com/files/167040/Cyclos-4.14.7-Cross-Site-Scripting.html