Delyura

**Name of the Vulnerable Software and Affected Versions** Cotonti Siena version 0.9.20 **Description** The issue allows admins to conduct stored XSS attacks via a forum post. **Recommendations** For Cotonti Siena version 0.9.20, update to a version that fixes this issue, as using the current version may pose a security risk. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Cotonti Siena version 0.9.20 **Description** The issue allows admins to conduct stored XSS attacks via a direct message (DM). **Recommendations** For Cotonti Siena version 0.9.20, update to a version that fixes this issue, as using direct messages for stored XSS attacks poses a significant risk. At the moment, there is no information about a newer version that contains a fix for this vulnerability.