Description
verdaccio before 3.12.0 allows XSS.
Remediation
References
https://github.com/verdaccio/verdaccio/security/advisories/GHSA-78j5-gcmf-vqc8
Related Vulnerabilities
CVE-2018-16487 Vulnerability in npm package lodash
CVE-2021-46062 Vulnerability in maven package net.mingsoft:ms-mcms
CVE-2020-28480 Vulnerability in maven package org.webjars.bower:jointjs
CVE-2021-23518 Vulnerability in npm package cached-path-relative
CVE-2023-25572 Vulnerability in maven package org.webjars.npm:ra-ui-materialui