HTML injection vulnerability affecting the CIGESv2 system, which allows an malicious user to inject arbitrary code and modify elements of the website and email confirmation message.