Description
XSS in sexstatic <=0.6.2 causes HTML injection in directory name(s) leads to Stored XSS when malicious file is embed with
Remediation
References
https://hackerone.com/reports/328210
Related Vulnerabilities
CVE-2023-36542 Vulnerability in maven package org.apache.nifi:nifi-hikari-dbcp-service
CVE-2020-24807 Vulnerability in npm package socket.io-file
CVE-2021-22147 Vulnerability in maven package org.elasticsearch:elasticsearch
CVE-2016-5018 Vulnerability in maven package org.apache.tomcat:tomcat-jasper
CVE-2017-18355 Vulnerability in npm package rendertron-middleware