Description
Cross-site scripting vulnerability in Central Dogma 0.17.0 to 0.40.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Remediation
References
https://github.com/line/centraldogma/releases/tag/centraldogma-0.41.0
http://jvn.jp/en/jp/JVN94889214/index.html
Related Vulnerabilities
CVE-2019-19771 Vulnerability in npm package bitconid-rpc
CVE-2019-10753 Vulnerability in maven package com.diffplug.spotless:spotless-eclipse-wtp
CVE-2022-25860 Vulnerability in maven package org.webjars.npm:simple-git
CVE-2017-18640 Vulnerability in maven package org.yaml:snakeyaml
CVE-2020-7641 Vulnerability in npm package grunt-util-property