Hello, I have found that an XSS payload has been executed in the name of note field, and I wanted to make a report about it, just please note that in the Occurrences I left it empty because I donβt know anything about it, and please see the video attached in POC to know more about it
<h5>Export note β<span>β><script>alert(1)</script></span>"</h5>
watch this video:
https://drive.google.com/file/d/15RhKzaWS10ugzBOf6pkEvsL6ySTrklE3/view