Name of the Vulnerable Software and Affected Versions No specific software or versions mentioned, use: Product (affected versions not specified)

Description The issue allows for JavaScript XSS injection in content type entries, specifically in the name and short name fields. This can be exploited by individuals who already have permission to edit content types, which may include administrators. It is recommended to verify user permissions to assess the scope of the issue. The fix involves escaping any injections to prevent exploitation.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.