EPSS
Percentile
50.3%
doorkeeper is vulnerable to cross-site scripting (XSS) attacks. A malicious user can inject and execute arbitrary javascript via the authorizations and applications view forms.
github.com/doorkeeper-gem/doorkeeper/issues/969
github.com/doorkeeper-gem/doorkeeper/pull/970