0.001 Low
EPSS
Percentile
19.4%
The extension fails to properly encode user input for output in HTML context. The issue is only exploitable by backend users with access to indexer- and filter-configurations.