An attacker can inject HTML when the Grid Column Type DataColumn is badly used.
The problem is fixed in 1.7.7.3
Cross-site Scripting (XSS) - Stored (CWE-79)
Impact
An attacker can inject HTML when the Grid Column Type DataColumn is badly used.
Patches
The problem is fixed in 1.7.7.3
References
Cross-site Scripting (XSS) - Stored (CWE-79)