CVE-2021-31673

A Dom-based Cross-site scripting (XSS) vulnerability at registration account in Cyclos 4 PRO.14.7 and before allows remote attackers to inject arbitrary web script or HTML via the groupId parameter. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt