eramba Enterprise Edition versions e1.0.6.018 and below and Community Edition versions c1.0.6.001 and below suffer from a persistent cross site scripting vulnerability.