CVE-2022-24589

Name of the Vulnerable Software and Affected Versions Burden version 3.0

Description The issue is related to a stored cross-site scripting (XSS) in the Add Category function. This allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the task parameter.

Recommendations For Burden version 3.0, consider disabling the Add Category function until a patch is available to prevent exploitation of the stored XSS vulnerability. Restrict access to the task parameter to minimize the risk of arbitrary web script or HTML execution.