CVE-2022-32172
In Zinc, versions v0.1.9 through v0.3.1 are vulnerable to Stored Cross-Site Scripting via the delete template functionality. According to sources (including Veracode and GHSA entries), the vulnerability arises because the delete template flow renders the template name without proper escaping, all...