Description
Cross-site Scripting (XSS) - Reflected in GitHub repository bustle/mobiledoc-kit prior to 0.14.2.
Remediation
References
https://github.com/bustle/mobiledoc-kit/commit/f3fdaa5352904fd2a0b4247ccb0dbf68aad43b5a
https://huntr.dev/bounties/2-other-bustle/mobiledoc-kit
Related Vulnerabilities
CVE-2022-47105 Vulnerability in maven package org.jeecgframework.boot:jeecg-boot-base-core
CVE-2018-1002202 Vulnerability in maven package net.lingala.zip4j:zip4j
CVE-2021-32702 Vulnerability in npm package nextjs-auth0
CVE-2021-39176 Vulnerability in npm package detect-character-encoding
CVE-2012-1833 Vulnerability in maven package org.grails:grails-core