EPSS
Percentile
23.0%
github.com/csaf-poc/csaf_distribution is vulnerable to cross-site scripting. The vulnerability exists due to a lack of validation in the CSAF advisory document which allows an attacker to inject and execute malicious JavaScript.
CSAF
github.com/advisories/GHSA-xxfx-w2rw-gh63
github.com/csaf-poc/csaf_distribution/commit/17f22855ee8d4270dd17ff748c30ed7304846fdc
github.com/csaf-poc/csaf_distribution/releases/tag/v0.8.2