CVE-2021-28079

Jamovi <=1.6.18 is affected by a cross-site scripting (XSS) vulnerability. The column-name is vulnerable to XSS in the ElectronJS Framework. An attacker can make a .omv (Jamovi) document containing a payload. When opened by victim, the payload is triggered. Date published : 2021-04-26 https://github.com/theart42/cves/blob/master/CVE-2021-28079/CVE-2021-28079.md

https://www.jamovi.org