Leantime 3.0.6 is vulnerable to HTML Injection via /dashboard/show#/tickets/newTicket.
CVE-2024-27474, CVE-2024-27476, CVE-2024-27477
Leantime-POC CVE-2024-27474, CVE-2024-27476, CVE-2024-27477