Title: Stored Cross-Site Scripting in PyroCMS
CVE ID: CVE-2022-37721
CVSSv3 Base Score: 8.7 (AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N)
Vendor: PyroCMS, Inc.
Advisory Release Date: 14 November 2022
Advisory URL: https://labs.integrity.pt/advisories/cve-2022-37721
Credits: Discovery by Bruno Barreirinhas <bb[at]integrity.pt>
*No official patch released by the vendor