Description
SonarSource SonarQube before 7.8 has XSS in project links on account/projects.
Remediation
References
https://github.com/SonarSource/sonarqube/commit/2beaf73c2d10dcaaf3949889af53579e7d5aba13
Related Vulnerabilities
CVE-2022-39263 Vulnerability in npm package @next-auth/upstash-redis-adapter
CVE-2021-37136 Vulnerability in maven package io.netty:netty-codec
CVE-2021-21346 Vulnerability in maven package com.thoughtworks.xstream:xstream
CVE-2022-41251 Vulnerability in maven package org.jenkins-ci.plugins:apprenda
CVE-2018-1002202 Vulnerability in maven package net.lingala.zip4j:zip4j