Confidant 跨站脚本漏洞
Confidant is a Lyft open source application. A cross-site scripting vulnerability exists in Confidant versions prior to 6.6.2, which stems from the presence of a cross-site scripting vulnerability that could allow an attacker to execute malicious scripts on another user's browser...