Description
Characters in the GET url path are not properly escaped and can be reflected in the server response.
Remediation
References
https://snyk.io/vuln/SNYK-JS-IOBROKERWEB-534971
Related Vulnerabilities
CVE-2016-10676 Vulnerability in npm package rs-brightcove
CVE-2023-37951 Vulnerability in maven package com.mabl.integration.jenkins:mabl-integration
CVE-2023-40343 Vulnerability in maven package io.jenkins.plugins:tuleap-oauth
CVE-2012-6662 Vulnerability in npm package jquery-ui
CVE-2019-10371 Vulnerability in maven package org.jenkins-ci.plugins:gitlab-oauth