HTML injection vulnerability in multiple Botble products such as TransP, Athena, Martfury, and Homzen, consisting of an HTML injection due to a lack of proper validation of user input by sending a request to '/search' using the 'q' parameter.CreditsGonzalo Aguilar García (6h4ack)Referenceshttps://www.incibe.es/en/incibe-cert/notices/aviso/html-injection-multiple-botble-products
