GHSA-34q3-p352-c7q8, CVE-2024-1143
maven/com.linecorp.centraldogma/centraldogma-server
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Central Dogma versions prior to 0.64.0 is vulnerable to Cross-Site Scripting (XSS), which could allow for the leakage of user sessions and subsequent authentication bypass.
All versions before 0.64.0
Upgrade to version 0.64.0 or above.
2024-02-05
source |