GHSA-9xfc-j5mf-9w5p, CVE-2016-6348
maven/org.jboss.resteasy/resteasy-client
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
JacksonJsonpInterceptor in RESTEasy might allow remote attackers to conduct a cross-site script inclusion (XSSI) attack.
All versions after 3.0.20 before 3.1.0
Unfortunately, there is no solution available yet.
2022-06-21
source |