CVE-2021-4254

Name of the Vulnerable Software and Affected Versions ctrlo lenio (affected versions not specified)

Description A vulnerability has been found in ctrlo lenio, classified as problematic, affecting an unknown functionality of the file views/layouts/main.tt of the component Notice Handler. The manipulation of the notice.notice.text argument leads to cross-site scripting. The attack can be launched remotely.

Recommendations Apply a patch to fix this issue, specifically the patch named aa300555343c1c081951fcb68bfb6852fbba7451. As a temporary workaround, consider restricting the manipulation of the notice.notice.text argument to minimize the risk of exploitation.