CVE-2023-0743: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

February 8, 2023

Cross-site Scripting (XSS) - Generic in GitHub repository answerdev/answer prior to 1.0.4.

References

github.com/advisories/GHSA-hjmr-xm25-36mh
github.com/answerdev/answer/commit/860b1a3bd8cfaa8827e6e6f50ab1d98fa4c2c816
huntr.dev/bounties/366cf8bb-19f6-4388-b089-d0a260efd863
nvd.nist.gov/vuln/detail/CVE-2023-0743

Code Behaviors & Features

Detect and mitigate CVE-2023-0743 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →