Prabhatsharma

**Name of the Vulnerable Software and Affected Versions** OpenObserve versions 0.4.4 through 0.9.x **Description** OpenObserve is an open-source observability platform that contains a cross-site scripting issue in the `openobserve/web/src/views/MemberSubscription.vue` file, specifically in line 32. The issue is resolved in version 0.10.0, which sanitizes incoming html. **Recommendations** For versions 0.4.4 through 0.9.x, update to version 0.10.0 to resolve the issue. As a temporary workaround, consider disabling the `MemberSubscription.vue` view until the update is applied.