David Vargas

**Name of the Vulnerable Software and Affected Versions** Claromentis version 8.2.2 **Description** The issue allows an authenticated attacker to place malicious JavaScript in the discussion forum, which is present in the login landing page, enabling them to steal session cookies from high privilege accounts and hijack these sessions. This can be achieved through a stored Cross Site Scripting (XSS) attack. **Recommendations** For Claromentis version 8.2.2, as a temporary workaround, consider disabling the Discuss module until a patch is available. Restrict access to the discussion forum to minimize the risk of exploitation. Avoid using the discussion forum in the login landing page until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.