Description
Cross Site Scripting (XSS) vulnerability in xCss Valine v1.4.14 via the nick parameter to /classes/Comment.
Remediation
References
https://github.com/xCss/Valine/issues/348
Related Vulnerabilities
CVE-2017-2610 Vulnerability in maven package org.jenkins-ci.main:jenkins-war
CVE-2020-26296 Vulnerability in maven package org.webjars.bower:vega
CVE-2020-2199 Vulnerability in maven package org.jenkins-ci.plugins:subversion
CVE-2020-10693 Vulnerability in maven package org.hibernate.validator:hibernate-validator
CVE-2024-36401 Vulnerability in maven package org.geoserver:gs-wms