New releases of our properties panels for BPMN, CMMN and DMN address several HTML injection / cross-site scripting vulnerabilities. We recommend users to upgrade.
Missing input saniation leads to several HTML injection / cross-site scripting vulnerabilities in our BPMN, CMMN and DMN properties panel libraries.
The following library releases fix the issues:
Join Camunda and build modeling tools people .