Description
OWASP json-sanitizer before 1.2.1 allows XSS. An attacker who controls a substring of the input JSON, and controls another substring adjacent to a SCRIPT element in which the output is embedded as JavaScript, may be able to confuse the HTML parser as to where the SCRIPT element ends, and cause non-script content to be interpreted as JavaScript.
Remediation
References
https://github.com/OWASP/json-sanitizer/pull/20
Related Vulnerabilities
CVE-2019-0227 Vulnerability in maven package org.apache.axis:axis-rt-core
CVE-2022-24847 Vulnerability in maven package org.geoserver:gs-main
CVE-2020-26291 Vulnerability in npm package urijs
CVE-2020-26296 Vulnerability in npm package vega
CVE-2023-37949 Vulnerability in maven package io.jenkins.plugins:macstadium-orka