Kiwi TCMS vulnerable to stored XSS via JavaScript: URI in extra_link field (TestPlan & TestCase)
Source: Mitre, NVD
Published: 2026-07-06