CVE-2022-31301

Name of the Vulnerable Software and Affected Versions Haraj version 3.7

Description A stored cross-site scripting (XSS) issue was found in the Post Ads component. This allows an attacker to inject malicious scripts into the application, potentially leading to unauthorized actions or data theft.

Recommendations For Haraj version 3.7, update the Post Ads component to remove the stored XSS vulnerability. As a temporary workaround, consider restricting access to the Post Ads feature until a patch is available. Avoid using the Post Ads component with untrusted input until the issue is resolved.