Symantec IT Analytics prior to 2.9.1 Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) Vulnerability
Symantec IT Analytics, prior to 2.9.1, may be susceptible to a cross-site scripting (XSS) exploit.
The information has been provided by Albert Sanchez
The original article can be found at:https://support.broadcom.com/security-advisory/security-advisory-detail.html?notificationId=SYMSA1766
Which is a type of issue that can potentially enable attackers to inject client-side scripts into web pages viewed by other users.
Symantec IT Analytics prior to 2.9.1