There is a local session fixation vulnerability that, when chained with cross-site scripting, leads to account take over of admin or a lower privileged user.
View the template here CVE-2022-31798.yaml
References:
https://eg.linkedin.com/in/omar-1-hashem