CVE-2020-36634
This CVE (CVE-2020-36634) affects Indeed Engineering util up to version 1.0.33. The vulnerability resides in the function visit/appendTo of varexport/src/main/java/com/indeed/util/varexport/servlet/ViewExportedVariablesServlet.java, where input is mishandled and leads to cross-site scripting. It ...