EPSS
Percentile
54.3%
Snippet-box 1.0.0 is vulnerable to Cross Site Scripting (XSS). Remote attackers can render arbitrary web script or HTML from the βSnippet codeβ form field.
github.com/go-compile/security-advisories/blob/master/CVE-2023-23277.pdf
github.com/pawelmalak/snippet-box
github.com/pawelmalak/snippet-box/issues/57