CVE-2022-39197-POC
According to the Update Log of the latest version 4.7.1 officially released by CobaltStrike on 20 September, teamserver version(<=4.7) has XSS vulnerability, which can cause RCE.
GitHub - xzajyjs/CVE-2022-39197-POC: CVE-2022-39197(CobaltStrike XSS <=4.7) POC