Pi-hole is a Linux network-level advertisement and Internet tracker blocking application. The Stored XSS exists in the Pi-hole Admin portal, which can be exploited by the malicious actor with the network access to DNS server. See the referenced GitHub security advisory for patch details.
{
"versions": [
{
"introduced": "0"
},
{
"last_affected": "5.7"
},
{
"introduced": "0"
},
{
"fixed": "5.5"
}
]
}