CVE-2024-27703
Leantime 3.0.6 is affected by a Cross Site Scripting (XSS) vulnerability in the to-do title parameter. Red Hat/Other sources indicate this can be stored XSS, enabling a remote attacker to execute arbitrary code in the context of an authenticated user. No explicit affected products beyond Leantime...