Automad · Automad · CVE-2021-37502
**Name of the Vulnerable Software and Affected Versions**
automad version 1.7.5
**Description**
A Cross Site Scripting (XSS) issue allows remote attackers to run arbitrary code via the `user name` field when adding a user.
**Recommendations**
For automad version 1.7.5, update to a version that contains a fix for this issue.