Description
CyberChef before 8.31.2 allows XSS in core/operations/TextEncodingBruteForce.mjs.
Remediation
References
https://github.com/gchq/CyberChef/issues/544
https://github.com/gchq/CyberChef/commit/01f0625d6a177f9c5df9281f12a27c814c2d8bcf
https://github.com/gchq/CyberChef/compare/v8.31.1...v8.31.2
https://github.com/gchq/CyberChef/issues/539
Related Vulnerabilities
CVE-2022-0841 Vulnerability in npm package npm-lockfile
CVE-2023-30524 Vulnerability in maven package org.jenkins-ci.plugins:reportportal
CVE-2022-25927 Vulnerability in npm package ua-parser-js
CVE-2023-31579 Vulnerability in maven package top.tangyh.basic:lamp-util
CVE-2022-41340 Vulnerability in npm package @lionello/secp256k1-js