Slawkens

**Name of the Vulnerable Software and Affected Versions** slawkens MyAAC versions up to 0.8.13 **Description** A vulnerability was found in the file system/pages/bugtracker.php, affecting unknown code. The manipulation of the argument `bug[2]['subject']`, `bug[2]['text']`, or `report['subject']` leads to cross-site scripting. The attack can be initiated remotely. **Recommendations** For versions up to 0.8.13, upgrade to version 0.8.14 to address this issue. As a temporary workaround, consider restricting access to the vulnerable file system/pages/bugtracker.php until the upgrade is applied.