1 matches found
Cross-site Scripting (XSS)
bolt/bolt is vulnerable to Cross-site Scripting XSS. The vulnerability is due to improper input sanitization of the title and textarea parameters in the Showcase Creation Handler, allowing injection of malicious scripts...