A cross-site scripting vulnerability in the ads comment section of Haraj v3.7 allows attackers to execute arbitrary web scripts or HTML via a crafted POST request.Referenceshttps://angtech.org/product/view/3https://angtech.orghttps://github.com/bigzooooz/CVE-2022-31298
