XSS (Cross Site Scripting) dompurify Dependency in Bamboo Data Center

🗓️ 14 Apr 2026 22:30:08Reported by security-metrics-botType

High severity XSS in Bamboo Data Center from dompurify; affected: 10.0.1, 10.2.15, 12.0.0, 12.1.2.

Reporter	Title	Published	Views	Family All 65
IBM Security Bulletins	Security Bulletin: IBM Security SOAR is vulnerable to client-side vulnerability (CVE-2024-45801)	28 Jan 202522:08	–	ibm
IBM Security Bulletins	Security Bulletin: User Behavior Analytics application add on to IBM QRadar SIEM is vulnerable to using components with known vulnerabilities	20 Nov 202413:56	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Observability with Instana is affected by Multiple Security Vulnerabilities	18 Nov 202415:04	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in DOMPurify affects IBM watsonx Assistant for IBM Cloud Pak for Data	5 Feb 202520:44	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities are addressed with IBM Process Mining Interim Fix for Oct 2024	14 Oct 202416:40	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Storage Defender Data Protect vulnerable to CVE-2024-45801 due to dependency on Open Source library.	11 Mar 202517:47	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Sterling Connect:Direct Web Services is affected by DOMPurify vulnerability (CVE-2024-45801)	22 Nov 202412:53	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Storage Ceph is vulnerable to Inefficient Regular Expression Complexity in Grafana (CVE-2024-45801)	29 Jul 202521:03	–	ibm
IBM Security Bulletins	Security Bulletin: IBM watsonx Orchestrate Cartridge affected by vulnerability in DOMPurify	2 May 202507:45	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in IBM CloudPak for AIOps	15 Apr 202503:11	–	ibm