A Cross-site-scripting (XSS) vulnerability exists in the Reporter Widgets that allows HTML injection.Referenceshttps://www.veeam.com/kb4649