2020-09-10 16:11:44
mitre
PUBLISHED
Zulip Desktop before 5.4.3 allows XSS because string escaping is mishandled during composition of the HTML for the user interface.