Xy

**Name of the Vulnerable Software and Affected Versions** WinMatrix3 Web package versions (affected versions not specified) **Description** The WinMatrix3 Web package developed by Simopro Technology contains a Reflected Cross-site Scripting issue. This allows unauthenticated remote attackers to execute arbitrary JavaScript code in a user's browser through phishing attacks. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.