Cross-Site Scripting Vulnerability in Vicidial by ViciDial Group
CVE-2021-46557
5.4MEDIUM
What is CVE-2021-46557?
Vicidial 2.14-783a is susceptible to a cross-site scripting (XSS) vulnerability that arises from insufficient input validation in several input tabs. This flaw allows attackers to inject malicious scripts, potentially compromising user sessions or manipulating client-side scripts executed within a user's browser. It emphasizes the need for robust input sanitization mechanisms to defend against such web-based threats.