Dfteo

**Name of the Vulnerable Software and Affected Versions** CALDERA version 2.7.0 **Description** The issue allows for cross-site scripting (XSS) attacks via the Operation Name box. **Recommendations** For CALDERA version 2.7.0, update to a version that fixes this issue, however at the moment, there is no information about a newer version that contains a fix for this vulnerability.