Description
A Cross Site Scripting (XSS) vulnerability exists in Nacos 2.0.3 in auth/users via the (1) pageSize and (2) pageNo parameters.
Remediation
References
https://github.com/alibaba/nacos/issues/7359
Related Vulnerabilities
CVE-2022-23487 Vulnerability in npm package libp2p
CVE-2020-35149 Vulnerability in npm package mquery
CVE-2023-45136 Vulnerability in maven package org.xwiki.platform:xwiki-platform-web-templates
CVE-2018-3717 Vulnerability in npm package simple-server
CVE-2022-45146 Vulnerability in maven package org.bouncycastle:bc-fips-debug