CVE-2021-32202
Cross Site Scripting
CS.Cart version 4.11.1
Vulnerability type: Remote, Cross site scripting
It is possible to induce copy-paste XSS by manipulating the "post description" filed in the blog post creation page.
The blog functionality is affected by the XSS vulnerability