Kke

**Name of the Vulnerable Software and Affected Versions** Kontena versions prior to 1.5.0 **Description** The issue allows for XSS in the "kontena master login --remote" code display. This can be demonstrated by using the `/code#code=` endpoint in a URI. **Recommendations** For versions prior to 1.5.0, update to version 1.5.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the `/code#code=` endpoint in the `server/app/views/static/code.html` file until a patch is available.