Cross Site Scripting (XSS) vulnerability in Gurock TestRail before 7.1.2 allows remote authenticated attackers to run arbitrary code via the reference field in milestones or description fields in reports.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2023-02-03T00:00:00
Updated: 2024-08-04T00:54:51.521Z
Reserved: 2021-07-12T00:00:00
Link: CVE-2021-36538
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-02-03T18:15:10.760
Modified: 2023-02-09T18:53:01.743
Link: CVE-2021-36538
Redhat
No data.