Openmrs · Openmrs Admin Ui Module · CVE-2021-4292
**Name of the Vulnerable Software and Affected Versions**
OpenMRS Admin UI Module versions up to 1.4.x
**Description**
A vulnerability was found in the Manage Privilege Page component, affecting the processing of the file `omod/src/main/webapp/pages/metadata/privileges/privilege.gsp`. This issue leads to cross-site scripting and can be initiated remotely.
**Recommendations**
For OpenMRS Admin UI Module versions up to 1.4.x, upgrade to version 1.5.0 to address this issue.