VYPR

Maven package

org.apache.nifi/nifi-jolt-transform-json-ui

pkg:maven/org.apache.nifi/nifi-jolt-transform-json-ui

Vulnerabilities (1)

  • CVE-2023-49145Nov 27, 2023
    affected < 1.24.0fixed 1.24.0

    Apache NiFi 0.7.0 through 1.23.2 include the JoltTransformJSON Processor, which provides an advanced configuration user interface that is vulnerable to DOM-based cross-site scripting. If an authenticated user, who is authorized to configure a JoltTransformJSON Processor, visits a