server/handler/HistogramQueryHandler.scala in Twitter TwitterServer (aka twitter-server) before 20.12.0, in some configurations, allows XSS via the /histograms endpoint.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| com.twitter:twitter-server_2.12(Maven) | 0 | 20.12.0 | N/A |
CVSS Metrics
