M-Files Server is a server for the M-Files system from M-Files, Inc. A security vulnerability exists in versions of M-Files Server prior to 22.2.11051.0, which stems from an administrative tool that allows the use of scripts to store configuration data that can then be run by other library administrators. An attacker could use this vulnerability to execute cross-site scripting attacks.