CVE-2021-36538
- Reference to the description:
- Description:
- Cross Site Scripting (XSS) vulnerability in Gurock TestRail before 7.1.2 allows remote authenticated attackers to run arbitrary code via the reference field in milestones or description fields in reports.
- Last updated date:
- 02/09/2023
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 02/09/2023
- Reference url to background
https://gist.github.com/miglen/b09498b4b9fe1be58973bd474af125ab