Description
Stored XSS was discovered in the tree mode of jsoneditor before 9.0.2 through injecting and executing JavaScript.
Remediation
References
https://github.com/josdejong/jsoneditor/issues/1029
Related Vulnerabilities
CVE-2023-23936 Vulnerability in npm package undici
CVE-2022-35924 Vulnerability in npm package next-auth
CVE-2020-13954 Vulnerability in maven package org.apache.cxf:cxf-rt-transports-http
CVE-2021-41571 Vulnerability in maven package org.apache.pulsar:pulsar
CVE-2021-43090 Vulnerability in maven package com.predic8:soa-model-parent