EPSS
Percentile
29.3%
silverstripe/queuedjobs is vulnerable to cross-site scripting. An attacker is able to inject and execute Javascript in a user’s browser through the CreateQueuedJobTask dev task via a malicious URL.
CreateQueuedJobTask
github.com/symbiote/silverstripe-queuedjobs/releases
www.silverstripe.org/download/security-releases/cve-2021-27938