Description
Cross Site Scripting (XSS) vulnerability in xCss Valine v1.4.14 via the nick parameter to /classes/Comment.
Remediation
References
https://github.com/xCss/Valine/issues/348
Related Vulnerabilities
CVE-2017-16021 Vulnerability in npm package uri-js
CVE-2022-29247 Vulnerability in npm package electron
CVE-2019-1003038 Vulnerability in maven package org.jenkins-ci.plugins:repository-connector
CVE-2022-39259 Vulnerability in maven package io.github.skylot:jadx-plugins-api
CVE-2018-20677 Vulnerability in maven package org.webjars.bower:bootstrap-sass