Lucy XSS Filter Improper Sanitization Vulnerability Allowing JavaScript Execution
Vulnerability
A vulnerability in Lucy XSS Filter, prior to commit e5826c0, allows attackers to execute malicious JavaScript. This issue arises from improper sanitization linked to misconfigured default superset rule files.
Impact
Exploitation of this vulnerability could lead to cross-site scripting (XSS) attacks, allowing for the execution of malicious scripts in the context of the user's browser.
Added: Jan 16, 2026, 6:19 AM
Updated: Jan 16, 2026, 6:19 AM
Vulnerability Rating
Custom Algorithm
spread
0.0impact
1.7exploitability
6.4remediation
0.0relevance
2.1threat
0.0urgency
2.9incentive
0.0Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.