Description
In Materialize through 1.0.0, XSS is possible via the Autocomplete feature.
Remediation
References
https://github.com/Dogfalo/materialize/issues/6286
Related Vulnerabilities
CVE-2021-32621 Vulnerability in maven package org.xwiki.platform:xwiki-platform-dashboard-macro
CVE-2023-22457 Vulnerability in maven package org.xwiki.contrib:application-ckeditor-plugins
CVE-2021-37694 Vulnerability in npm package @asyncapi/java-spring-cloud-stream-template
CVE-2022-24823 Vulnerability in maven package io.netty:netty-common