Description
bracket-template suffers from reflected XSS possible when variable passed via GET parameter is used in template
Remediation
References
https://hackerone.com/reports/317125
Related Vulnerabilities
CVE-2019-17495 Vulnerability in maven package org.webjars.bower:swagger-ui
CVE-2021-21174 Vulnerability in npm package electron
CVE-2022-23621 Vulnerability in maven package org.xwiki.platform:xwiki-platform-oldcore
CVE-2020-16041 Vulnerability in npm package electron
CVE-2022-43409 Vulnerability in maven package org.jenkins-ci.plugins.workflow:workflow-support