CVE-2021-38602
A stored cross site scripting vulnerability is present on the Article editing page in version 587 of PluXML User input is not properly sanitized in multiple fields
Vulnerable Fields:
Headline (optional):
Content:
Once inserted, XSS can be triggered by visiting the posted article at the link mentioned under Link to article: near the top of the page
Headli