CVE-2022-48013
Opencats v0.9.7 contains a stored XSS vulnerability in the calendar component ( /opencats/index.php?m=calendar ). The underlying issue allows injecting payloads into the Description or Title fields, enabling execution of arbitrary web scripts or HTML by an attacker who can supply crafted input. C...