This document will explain you about the unwanted HTML injection in user administration pages (CVE-2019-15510).
While creating or modifying the user description in User Administration, the use of texts simliar to HTML tags created unwanted HTML injections. The texts were altered according to the tags in the description. This caused changes in the user data created.
This has been identified and fixed on 04-Nov-2019. To apply this fix, follow the steps below:
Keywords: Security Updates, Vulnerabilities and Fixes.