EasyFlow .NET developed by Digiwin has a Stored Cross-Site Scripting vulnerability, allowing authenticated remote attackers to inject persistent JavaScript code executed in users' browsers upon page load.Referenceshttps://www.twcert.org.tw/tw/cp-132-10980-0e640-1.htmlhttps://www.twcert.org.tw/en/cp-139-10981-8617d-2.html
