Vulnerability CVE-2021-36538
Published: 2023-02-03

Description:
Cross Site Scripting (XSS) vulnerability in Gurock TestRail before 7.1.2 allows remote authenticated attackers to run arbitrary code via the reference field in milestones or description fields in reports.

 References:
https://gist.github.com/miglen/b09498b4b9fe1be58973bd474af125ab
Copyright 2026, cxsecurity.com

 

Back to Top