Description
In the XSS Protection API module before 1.0.12 in Apache Sling, the encoding done by the XSSAPI.encodeForJSString() method is not restrictive enough and for some input patterns allows script tags to pass through unencoded, leading to potential XSS vulnerabilities.
Remediation
References
http://www.securityfocus.com/bid/99870
https://lists.apache.org/thread.html/332166037a54b97cf41e2b616aaed38439de94b19b204841478e4525%40%3Cdev.sling.apache.org%3E
Related Vulnerabilities
CVE-2018-11798 Vulnerability in npm package thrift
CVE-2016-10726 Vulnerability in maven package org.dspace:dspace-xmlui
CVE-2017-16131 Vulnerability in npm package unicorn-list
CVE-2016-10637 Vulnerability in npm package haxe-dev
CVE-2022-26112 Vulnerability in maven package org.apache.pinot:pinot-spi