Name of the Vulnerable Software and Affected Versions No specific software or versions mentioned

Description The issue allows for JavaScript XSS injection in content type entries, specifically in the name and short name fields. This can be exploited by individuals who already have permission to edit content types, which often includes administrators. It is recommended to verify user permissions to assess the risk. The fix involves escaping any injections to prevent exploitation.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.