Name of the Vulnerable Software and Affected Versions semantic-ui-search versions (all versions)

Description The issue is related to Cross-Site Scripting due to the lack of output encoding on the selection dropdowns, which can cause user input to be executed instead of being printed as text.

Recommendations For all versions, at the moment, there is no information about a newer version that contains a fix for this vulnerability. Consider using an alternative module until a fix is made available.