CVE-2022-34619

A stored cross-site scripting (XSS) vulnerability in Mealie v0.5.5 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Shopping Lists item names text field.

Date published : 2022-08-02

https://cwe.mitre.org/data/definitions/79.html

https://docs.mealie.io/changelog/v0.5.6/