Description
Cross-site Scripting (XSS) - Stored in GitHub repository nocodb/nocodb prior to 0.91.7+.
Remediation
References
https://github.com/nocodb/nocodb/commit/362f8f0869989bc13bdcd66c6fc9c86ac79b9992
https://huntr.dev/bounties/2615adf2-ff40-4623-97fb-2e4a3800202a
Related Vulnerabilities
CVE-2021-23926 Vulnerability in maven package org.apache.xmlbeans:xmlbeans
CVE-2019-15782 Vulnerability in maven package org.webjars.npm:webtorrent
CVE-2015-0250 Vulnerability in maven package batik:batik-dom
CVE-2023-50730 Vulnerability in maven package edu.gemini:gsp-graphql-core_2.13
CVE-2021-21388 Vulnerability in npm package systeminformation