Some UI elements of the Common User Interface Component are not properly sanitizing output and therefore prone to output arbitrary HTML (XSS).
CPE | Name | Operator | Version |
---|---|---|---|
bluespice | ge | 4.1.0 | |
bluespice | lt | 4.2.1 | |
common_user_interface | ge | 3.0.0 | |
common_user_interface | lt | 3.0.5 |