Xss

Description A low-privileged user (with the User role) can achieve a full administrator account takeover on Mercator by injecting a …