The host is installed with MOVEit Transfer 2021.1.x before 2021.1.8 (13.1.8), 2022.0.x before 2022.0.8 (14.0.8), 2022.1.x before 2022.1.9 (14.1.9), 2023.0.0 before 2023.0.6 (15.0.6) and is prone to a reflected cross-site scripting vulnerability. A flaw is present in the application, which fails to properly handle MOVEit Transfer's web interface. Successful exploitation could allow an attacker to c ...