CVE-2022-24864

CVE-2022-24864 affects Origin Protocol’s origin-website: an attacker can inject malicious JavaScript by posting to /presale/join. User-controlled data is sent to SendGrid without sanitization and inserted into an email addressed to [email protected]. If the recipient’s email client is s...