1.28.1
9 years ago
1 months ago
Known vulnerabilities in the org.apache.nifi:nifi-web-ui package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for freeVulnerability | Vulnerable Version |
---|---|
org.apache.nifi:nifi-web-ui is a system to process and distribute data. Affected versions of this package are vulnerable to Cross-site Scripting (XSS) in the connection details dialog when accessed by an authorized user. The user supplied text is not being properly handled when added to the DOM. How to fix Cross-site Scripting (XSS)? Upgrade | [,1.0.1)[1.1.0,1.1.1) |