Name of the Vulnerable Software and Affected Versions VersionedRequestFilter (affected versions not specified)

Description A cross-site scripting issue has been discovered. When a user request is denied access to the requested stage, an error message is generated for display on the CMS login page. This error message includes the URL of the requested page without proper escaping, allowing arbitrary HTML injection into the CMS login page.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.