Description
Controllers.outgoing in controllers/index.js in NodeBB before 0.7.3 has outgoing XSS.
Remediation
References
https://github.com/NodeBB/NodeBB/compare/56b79a9...4de7529
https://github.com/NodeBB/NodeBB/pull/3371
https://vulners.com/securityvulns/SECURITYVULNS:DOC:32625
https://www.vulnerability-lab.com/get_content.php?id=1608
Related Vulnerabilities
CVE-2022-23496 Vulnerability in maven package nl.basjes.parse.useragent:yauaa-beam-sql
CVE-2020-11971 Vulnerability in maven package org.apache.camel:camel-api
CVE-2021-23372 Vulnerability in npm package mongo-express
CVE-2022-43411 Vulnerability in maven package org.jenkins-ci.plugins:gitlab-plugin
CVE-2020-1956 Vulnerability in maven package org.apache.kylin:kylin-core-common