## https://sploitus.com/exploit?id=CNVD-2022-47471
Strapi is an open source content management system (CMS). Strapi suffers from a cross-site scripting vulnerability that stems from insufficient filtering of user-supplied data in the file upload function, which can be exploited by remote attackers to inject and execute arbitrary HTML and script code in a user's browser.