Name of the Vulnerable Software and Affected Versions: WebWork (affected versions not specified) Description: A Reflected Cross-Site Scripting (XSS) issue exists in WebWork, potentially enabling remote attackers to execute arbitrary code. The vulnerability is triggered through the q and engine request parameters in the /search API endpoint. Recommendations: At the moment, there is no information about a newer version that contains a fix for this…Read More