Details
-
Bug
-
Resolution: Fixed
-
Major
-
None
-
Yes
Description
An attacker with elevated privileges can create entities with specially crafted properties which when viewed by another user can execute arbitrary JavaScript in the context of the NXRM application.