CVE-2019-14805
CVE-2019-14805 affects UNA 10.0.0-RC1, where a stored/xss vulnerability exists in studio/builder_menu.php?page=sets during set editing via the System Name field. The issue is triggered by insufficient input validation in the Sets editing workflow, enabling an attacker to inject and execute client...