CVE-2023-38969

Cross Site Scripting vulnerabiltiy in Badaso v.2.9.7 allows a remote attacker to execute arbitrary code via a crafted payload to the title parameter in the new book and edit book function. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt