Zulip 8.3 is vulnerable to Cross Site Scripting (XSS) via the constructcopydiv function in copyandpaste.js.
{
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/36xxx/CVE-2024-36624.json",
"cna_assigner": "mitre"
}