Description
OpenCRX version 5.2.0 is vulnerable to HTML injection via Activity Saved Search Creation.
Remediation
References
https://www.esecforte.com/cve-2023-40813-html-injection-saved-search/
Related Vulnerabilities
CVE-2021-23445 Vulnerability in npm package datatables.net
CVE-2020-26302 Vulnerability in maven package org.webjars.npm:is_js
CVE-2021-43138 Vulnerability in maven package org.webjars.bower:async
CVE-2023-50449 Vulnerability in maven package com.jfinal:jfinal
CVE-2022-36527 Vulnerability in maven package com.jflyfox:jflyfox_jfinal