CVE-2021-4292
OpenMRS Admin UI Module (up to 1.4.x) contains a cross-site scripting (XSS) vulnerability in the privilege.gsp handling on the Manage Privilege Page. The issue arises from processing on omod/src/main/webapp/pages/metadata/privileges/privilege.gsp, allowing remote initiation. The recommended fix i...