Name of the Vulnerable Software and Affected Versions harp versions (affected versions not specified)

Description The issue allows for Cross-Site Scripting, where an attacker can inject arbitrary JavaScript as a new product option in the admin page, enabling the execution of arbitrary code. This issue is limited to the admin page and does not affect other pages.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability. Consider using an alternative module until a fix is made available.