scully.ie Cross Site Scripting vulnerability OBB-4033176

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

@scullyio/init (>=1.0.0-beta.4 <=1.1.0), @scullyio/scully-plugin-base-href-rewrite (=0.0.1) +3 more potentially affected by CVE-2020-28470 via @scullyio/scully (>=0.0.72 <=1.0.11)

@scullyio/scully NPM version =0.0.72, =1.0.0-beta.4, =1.0.0, =0.0.1, =1.0.0-beta.4 Source cves: CVE-2020-28470 Source advisory: OSV:GHSA-R96P-V3CR-GFV8...