You do not have permission to edit this page, for the following reason: The action you have requested is limited to users in one of the groups: Users, Administrators, Editors, ES_editors. You can view and copy the source of this page. == Problem == Users are able to inject arbitrary HTML (XSS) on regular pages, using a special value for the <code>title</code> parameter. This can be triggered via URL. Return to Security:Security Advisories/BSSA-2022-02. Retrieved from "https://en.wiki.bluespice.com/wiki/Security:Security_Advisories/BSSA-2022-02"