Description Status Board 1.1.81 has reflected XSS via logic.ts. Remediation References https://github.com/jameswlane/status-board/pull/949 Related Vulnerabilities CVE-2021-23555 Vulnerability in npm package vm2 CVE-2022-25878 Vulnerability in maven package org.webjars.npm:protobufjs CVE-2022-34169 Vulnerability in maven package xalan:xalan CVE-2020-36377 Vulnerability in npm package aaptjs CVE-2022-21227 Vulnerability in npm package sqlite3 Severity High Classification CWE-79 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Tags Patch Third Party Advisory