Vivaldigroup: >> Icontrol+ Server Security Vulnerabilities
A cross-site scripting vulnerability in Vivaldi United Group iCONTROL+ Server including Firmware version 4.7.8.0.eden Logic version 5.32 and below. This issue allows attackers to inject JavaScript payloads within the error or edit-menu-item parameters which are then executed in the victim's browser session.
CVSS Score
6.3
EPSS Score
0.0
Published
2025-07-29