Cross Site Scripting (XSS) vulnerability in Gurock TestRail before 7.1.2 allows remote authenticated attackers to run arbitrary code via the reference field in milestones or description fields in reports.Referenceshttps://gist.github.com/miglen/b09498b4b9fe1be58973bd474af125ab
