EPSS
Percentile
19.4%
sulu/sulu is vulnerable to cross-site scripting. An attacker can inject and execute malicious javascript through the tag names as it does not properly sanitize input html.
github.com/sulu/sulu/commit/20007ac70a3af3c9e53a6acb0ef8794b65642445
github.com/sulu/sulu/security/advisories/GHSA-h58v-g3q6-q9fx