Sgeulette

**Name of the Vulnerable Software and Affected Versions** collective.task versions up to 3.0.9 **Description** A vulnerability was found in collective.task, affecting the function `renderCell/AssignedGroupColumn` of the file `src/collective/task/browser/table.py`. The manipulation leads to cross-site scripting. It is possible to initiate the attack remotely. **Recommendations** Upgrading to version 3.0.10 is able to address this issue. It is recommended to upgrade the affected component. As a temporary workaround, consider disabling the `renderCell/AssignedGroupColumn` function until a patch is available. Restrict access to the `src/collective/task/browser/table.py` file to minimize the risk of exploitation.