5Uper8Ean

**Name of the Vulnerable Software and Affected Versions** DataEase versions prior to 1.18.9 **Description** DataEase is an open source data visualization analysis tool. The DataEase panel and dataset have a stored cross-site scripting vulnerability. The issue has been fixed in version 1.18.9. There are no known workarounds for this issue. **Recommendations** For versions prior to 1.18.9, update to version 1.18.9 to resolve the issue. As a temporary workaround, consider restricting access to the DataEase panel and dataset until the update can be applied.