EPSS
Percentile
58.5%
atlas-dashboardv2 is vulnerable to reflected cross-site scripting (XSS) attacks. The search function does not sanitize the search queries that are passed to the application, allowing a malicious user to inject and execute arbitrary javascript.
seclists.org/oss-sec/2017/q2/222
github.com/apache/incubator-atlas/commit/6681b94862f300a4e320e7cedf607e54dc6d3ad5#diff-b3304f390af5e1c7af6cbc11a55fcbf2L268
issues.apache.org/jira/browse/ATLAS-1402