Description
A Stored Cross-Site Scripting (XSS) vulnerability exists in MoonShine version < 3.12.4, allowing remote attackers to store and execute arbitrary JavaScript by including a malicious HTML payload in the Name parameter when creating a new Admin.
References
github.com/moonshine-software/moonshine
github.com/GiacoLenzo2109/MoonShine_Software_PoCs
