Ulrich Braun

**Name of the Vulnerable Software and Affected Versions** TechRadar app version 1.1 for Confluence Server **Description** The issue allows for XSS via the Title field of a Radar. This means an attacker could inject malicious scripts into the Title field, potentially leading to the execution of unauthorized code on the user's browser. **Recommendations** For TechRadar app version 1.1, consider disabling the Title field of a Radar until a patch is available to prevent potential XSS attacks. Restrict access to the Radar feature to minimize the risk of exploitation. Avoid using the Title field in the affected Radar feature until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.