Description
Cross-site scripting vulnerability in Central Dogma 0.17.0 to 0.40.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Remediation
References
http://jvn.jp/en/jp/JVN94889214/index.html
https://github.com/line/centraldogma/releases/tag/centraldogma-0.41.0
Related Vulnerabilities
CVE-2019-10330 Vulnerability in maven package org.jenkins-ci.plugins:gitea
CVE-2021-21278 Vulnerability in npm package rsshub
CVE-2019-10343 Vulnerability in maven package io.jenkins:configuration-as-code
CVE-2023-40338 Vulnerability in maven package org.jenkins-ci.plugins:cloudbees-folder
CVE-2023-42794 Vulnerability in maven package org.apache.tomcat:tomcat-catalina