Description
Forms is a library for easily creating HTML forms. Versions before 1.3.0 did not have proper html escaping. This means that if the application did not sanitize html on behalf of forms, use of forms may be vulnerable to cross site scripting
Remediation
References
https://nodesecurity.io/advisories/158
https://github.com/caolan/forms/commit/bc01e534a0ff863dedb2026a50bd03153bbc6a5d
Related Vulnerabilities
CVE-2020-26291 Vulnerability in npm package urijs
CVE-2019-10779 Vulnerability in maven package stroom:stroom-app
CVE-2021-41164 Vulnerability in maven package org.webjars.bowergithub.ckeditor:ckeditor4
CVE-2021-32809 Vulnerability in maven package org.webjars.npm:ckeditor4
CVE-2021-37304 Vulnerability in maven package org.jeecgframework.boot:jeecg-boot-base