uvdesk/community-skeleton is vulnerable to Cross-site Scripting (XSS). The vulnerability exists because the library does not properly validate the user-supplied input before being rendered, allowing an attacker to inject and execute malicious JavaScript in the browser.
CPE | Name | Operator | Version |
---|---|---|---|
uvdesk/community-skeleton | le | v1.0.18 | |
uvdesk/community-skeleton | le | v1.0.18 |