Betul Denizler

**Name of the Vulnerable Software and Affected Versions** ASOS Information Technologies SOBIAD versions prior to 23.02.01 **Description** The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting (XSS). This allows for Cross-Site Scripting (XSS) attacks. **Recommendations** For versions prior to 23.02.01, update to version 23.02.01 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** ASOS Information Technologies Book Cites versions prior to 23.01.05 **Description** The issue is related to improper neutralization of input during web page generation, which allows Cross-Site Scripting (XSS). This means an attacker could potentially inject malicious scripts into the website, affecting users' sessions. **Recommendations** For versions prior to 23.01.05, update to version 23.01.05 or later to resolve the issue. At the moment, there is no information about additional mitigation measures for this specific issue.