Mautic is an open source marketing automation software that monitors and manages websites, sends emails and manages customer resources. Mautic is vulnerable to a cross-site scripting vulnerability that stems from Mautic being vulnerable to an inline JS XSS attack when viewing Mautic assets by using inline JS in the header and adding a corrupted image URL as a remote asset. This can only be used by an authenticated user with permission to create or edit assets. No details of the vulnerability are currently available.