GHSA-vf6x-59hh-332f: Formwork has a cross-site scripting (XSS) vulnerability in Site title
The site title field at /panel/options/site/allows embedding JS tags, which can be used to attack all members of the system. This is a widespread attack and can cause significant damage if there is a considerable number of users.
References
Detect and mitigate GHSA-vf6x-59hh-332f with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →