[Security] Stored XSS in private task

Tested version: latest

Steps to reproduce the vulnerability:

- Login in the application.
- Click on Add a Private task.
- Set `"<script>alert(document.domain)</script>` as task description and save.
- XSS will fire whenever task is reflected in page.

![Screenshot from 2023-03-25 16-28-53](https://user-images.githubusercontent.com/35783570/227726770-dae4cd07-d98a-4c33-b7f4-987a49a6af97.png)



Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Security] Stored XSS in private task #9

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

[Security] Stored XSS in private task #9

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions