Lucene search
Veracode Vulnerability DatabaseVERACODE:40320HistoryApr 27, 2023 - 3:45 p.m.
Cross-site Scripting (XSS)
2023-04-2715:45:29
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
cross-site scripting
eslint-detailed-reporter
template-generator.js
vulnerability
software
javascript
0.001 Low
EPSS
Percentile
37.6%
eslint-detailed-reporter is vulnerable to Cross-site Scripting (XSS). The vulnerability exists in renderIssue function in template-generator.js because the issue message is not properly escaped when rendering issues which allows an attacker to inject and execute arbitrary JavaScript.
| CPE | Name | Operator | Version |
|---|---|---|---|
| eslint-detailed-reporter | le | 0.9.0 | |
| eslint-detailed-reporter | le | 0.9.0 |
Related
osv
osv
CVE-2022-4942
2023-04-20 06:15:07
eslint-detailed-reporter vulnerable to cross-site scripting
2023-04-20 06:30:17
cvelist
cvelist
github
github
eslint-detailed-reporter vulnerable to cross-site scripting
2023-04-20 06:30:17
cve
cve
CVE-2022-4942
2023-04-20 06:15:07
prion
prion
Cross site scripting
2023-04-20 06:15:00
nvd
nvd
CVE-2022-4942
2023-04-20 06:15:07