This document will explain you about the unwanted HTML injection in user administration pages (CVE-2019-15510).
While creating or modifying the user description in User Administration, the use of texts simliar to HTML tags created unwanted HTML injections. The texts was altered according to the tags in the description. This created changes in the user data created.
This has been identified and fixed on 04-Nov-2019. To apply this fix, follow the steps below:
Keywords: Security Updates, Vulnerabilities and Fixes.