Sabina Rzeźwicka

**Name of the Vulnerable Software and Affected Versions** Dradis Community Edition versions 3.11 and earlier Dradis Professional Edition versions 3.1.1 and earlier **Description** A cross-site scripting issue allows remote authenticated attackers to inject arbitrary web script or HTML. **Recommendations** For Dradis Community Edition versions 3.11 and earlier, update to a version later than 3.11. For Dradis Professional Edition versions 3.1.1 and earlier, update to a version later than 3.1.1.