habitica cross-site scripting vulnerability
habitica is an open source habit-forming program from the US-based HabitRPG. habitica versions v4.119.0 through v4.232.2 are vulnerable to a cross-site scripting vulnerability. The vulnerability stems from the program's lack of data validation filtering of user-supplied data and output. An attack...