Scriptcase v.9.10.023 and before is vulnerable to Cross Site Scripting (XSS) in nm_cor.php via the form and field parameters.Referenceshttps://blog.hawktesters.com/zero-day-alert-scriptcase-vulnerabilities-xss/https://blog.hawktesters.com/zero-day-alert-scriptcase-vulnerabilities-rce/