Tommcclymont

**Name of the Vulnerable Software and Affected Versions** Silverstripe Form Capture versions 0.2.0 through 1.0.1 Silverstripe Form Capture versions 1.1.1 through 2.2.4 Silverstripe Form Capture versions 3.1.0 **Description** The issue arises from improper escaping when presenting stored form submissions, allowing an attacker to perform a Cross-Site Scripting attack. **Recommendations** For versions 0.2.0 through 1.0.1, update to version 1.0.2 or later. For versions 1.1.1 through 2.2.4, update to version 2.2.5 or later. For version 3.1.0, update to version 3.1.1 or later.