Cross-site scripting (XSS) vulnerability in the search functionality in United Planet Intrexx Professional before 20.03 allows remote attackers to inject arbitrary web script or HTML via the request parameter.
https://onlinehelp.unitedplanet.com/intrexx/9400/en/index.html?p=helpfiles/help.3.onlineupdate-02.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24188
