Description
Cross-site Scripting (XSS) - Stored in GitHub repository amauric/tarteaucitron.js prior to v1.13.1.
Remediation
References
https://github.com/amauric/tarteaucitron.js/commit/c4c2fcf2b2212ce968bdcae145bb74283c441e5f
https://huntr.dev/bounties/a0fd0671-f051-4d41-8928-9b19819084c9
Related Vulnerabilities
CVE-2021-37694 Vulnerability in npm package @asyncapi/java-spring-cloud-stream-template
CVE-2019-20149 Vulnerability in maven package org.webjars.npm:kind-of
CVE-2022-1330 Vulnerability in maven package org.webjars.bower:fullpage
CVE-2020-11887 Vulnerability in npm package svg2png
CVE-2022-39382 Vulnerability in npm package @keystone-6/core