Security Update
The OpenUI Consortium has been made aware of a possible Cross Site Scripting (XSS) vulnerability in OpenUI. ScanAlert identified this potential vulnerability, while at the same time acknowledging that it's use is unlikely. Nevertheless, it does expose a 'potential' exploit under very specific circumstances...and it's enough to disqualify merchants from PCI compliance.
This update closes the potential exploit, and includes a number of minor bug fixes that have accumulated since the last official release.
Because of this security concern, we encourage all OpenUI users to run the OpenUI Update Wizard and install this update.
