CVE-2023-45222

An attacker with access to the web application that has the vulnerable software could introduce arbitrary JavaScript by injecting a cross-site scripting payload into the "autorefresh" parameter. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt