CVE-2018-1000516
CVE-2018-1000516 concerns the Galaxy Project Galaxy version 14.10, where multiple templates fail to properly sanitize user input, enabling cross-site scripting (XSS) via crafted URLs. The root cause is CWE-79 Improper Neutralization of Input During Web Page Generation, allowing injected JavaScrip...