Description
Stored XSS was discovered in the tree mode of jsoneditor before 9.0.2 through injecting and executing JavaScript.
Remediation
References
https://github.com/josdejong/jsoneditor/issues/1029
Related Vulnerabilities
CVE-2020-8244 Vulnerability in maven package org.webjars.npm:bl
CVE-2021-4245 Vulnerability in maven package org.webjars.npm:rfc6902
CVE-2023-37899 Vulnerability in npm package @feathersjs/socketio
CVE-2021-3795 Vulnerability in npm package semver-regex
CVE-2020-10714 Vulnerability in maven package org.wildfly.security:wildfly-elytron