CVE-2022-39350
CVE-2022-39350 affects @dependencytrack/frontend (Dependency-Track frontend). The issue arises because vulnerability details rendered with Showdown were not encoded/sanitized before version 4.6.1, allowing arbitrary JavaScript in vulnerability fields (Description, Details, Recommendation, Referen...