Ipswitch MOVEit DMZ versions 8.1 and below suffer from a persistent cross site scripting vulnerability.