Lucene search

K
githubGitHub Advisory DatabaseGHSA-HH8V-JMH3-9437
HistoryApr 13, 2021 - 3:25 p.m.

Cross-site scripting in SocksJS-node

2021-04-1315:25:33
CWE-79
GitHub Advisory Database
github.com
24

0.001 Low

EPSS

Percentile

46.2%

htmlfile in lib/transport/htmlfile.js in SockJS before 0.3.0 is vulnerable to Reflected XSS via the /htmlfile c (aka callback) parameter.

CPENameOperatorVersion
sockjslt0.3.0

0.001 Low

EPSS

Percentile

46.2%

Related for GHSA-HH8V-JMH3-9437