Owasp · Dependency-Track · CVE-2019-1020007
Name of the Vulnerable Software and Affected Versions:
Dependency-Track versions prior to 3.5.1
Description:
The issue allows for cross-site scripting (XSS), which is a type of attack where an attacker can inject malicious scripts into a website.
Recommendations:
For versions prior to 3.5.1, update to version 3.5.1 or later to resolve the issue.