ZenTao 18.3 - Stored Cross-Site Scripting via Project Name Field
A Stored Cross-Site Scripting vulnerability was discovered in ZenTao 18.3 where a user can create a project, and in the name field of the project, they can inject malicious JavaScript code.