Description
There is a stored Cross-Site Scripting vulnerability in Open Graph meta properties read by the `metascrape` npm module <= 3.9.2.
Remediation
References
https://hackerone.com/reports/309367
Related Vulnerabilities
CVE-2022-34114 Vulnerability in maven package io.dataease:dataease-plugin-common
CVE-2020-26870 Vulnerability in maven package org.webjars.npm:dompurify
CVE-2015-0250 Vulnerability in maven package batik:batik-transcoder
CVE-2022-32210 Vulnerability in npm package undici
CVE-2022-41881 Vulnerability in maven package io.netty:netty-codec-haproxy