trafficserver is vulnerable to improper input validation. The library does not properly escape the special characters before it output to the front end, allowing an attacker to inject and execute malicious javascript.
CPE | Name | Operator | Version |
---|---|---|---|
trafficserver:sid | eq | 8.1.0+ds-2 | |
trafficserver:sid | eq | 8.1.0+ds-2 |