CVE-2022-25220

PeteReport Version 0.5 allows an authenticated admin user to inject persistent JavaScript code inside the markdown descriptions while creating a product, report or finding. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt