Assigner | mitre |
Reserved | 2024-03-08 |
Published | 2024-03-19 |
Updated | 2024-06-10 |
Description
Cross Site Scripting vulnerability in Unit4 Financials by Coda prior to 2023Q4 allows a remote attacker to run arbitrary code via a crafted GET request using the cols parameter.
References
https://packetstormsecurity.com/files/177619/Financials-By-Coda-Cross-Site-Scripting.html
https://www.unit4.com/products/financial-management-software