CVE-2015-10079

Name of the Vulnerable Software and Affected Versions juju2143 WalrusIRC version 0.0.2

Description A problem was found in the function parseLinks of the file public/parser.js. The manipulation of the argument text leads to cross-site scripting. The attack may be initiated remotely.

Recommendations For version 0.0.2, upgrade to version 0.0.3 to address this issue. As a temporary workaround, consider disabling the parseLinks function until the patch is applied. Restrict access to the public/parser.js file to minimize the risk of exploitation. Avoid using the text argument in the affected function until the issue is resolved.