Lucy-XSS security vulnerability
Lucy-XSS is an open-source cross-site scripting protection library developed by NAVER. Lucy-XSS has a security vulnerability that occurs when the ObjectSecurityListener or EmbedSecurityListener option is enabled, and the src attribute lacks a file extension. This vulnerability may lead to a HEAD...
