Tsuretettee

**Name of the Vulnerable Software and Affected Versions** Public Knowledge Project omp and ojs versions 3.3.0 through 3.5.0 **Description** A security issue exists in Public Knowledge Project omp and ojs. The manipulation of the `manualInstructions` argument in an unknown function within the file plugins/paymethod/manual/templates/paymentForm.tpl of the Payment Instructions Setting Handler component can lead to cross site scripting. This attack can be initiated remotely. **Recommendations** Upgrade the affected component to address this issue.