EPSS
Percentile
30.2%
alextselegidis/easyappointments is vulnerable to Stored HTML Injection. The vulnerability is due to improper sanitization in the compony name field, which allows an attacker to inject and execute malicious code into the system.
github.com/advisories/GHSA-9qvw-fhj2-xqmv
github.com/alextselegidis/easyappointments/commit/453c6e130229718680c91bef450db643a0f263e4
huntr.dev/bounties/16bc74e2-1825-451f-bff7-bfdc1ea75cc2