Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
An issue was discovered in Mayan EDMS The Appearance app sets window.location directly, leading to XSS.
An issue was discovered in Mayan EDMS The Appearance app sets window.location directly, leading to XSS.
An issue was discovered in Mayan EDMS The Tags app has XSS because tag label values are mishandled.
An issue was discovered in Mayan EDMS The Cabinets app has XSS via a crafted cabinet label.