EPSS
Percentile
19.4%
A logged in admin user was possible to add a script injection (XSS) in the collection title which was executed.
Manual patching the js files.
If you have any questions or comments about this advisory:’
github.com/sulu/sulu/releases/tag/1.6.41
github.com/sulu/sulu/security/advisories/GHSA-gm2x-6475-g9r8
nvd.nist.gov/vuln/detail/CVE-2021-32737