CVE-2021-23936

Name of the Vulnerable Software and Affected Versions: OX App Suite versions 7.10.4 and earlier

Description: The issue allows for cross-site scripting (XSS) attacks via the subject of a task. This means an attacker could potentially inject malicious scripts into the task subject, which would then be executed by the user's browser, allowing the attacker to steal user data or take control of the user's session.

Recommendations: For OX App Suite versions 7.10.4 and earlier, update to a version later than 7.10.4 to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.