CVE-2023-37360 Information

Description

pacparser_find_proxy in Pacparser before 1.4.2 allows JavaScript injection and possibly privilege escalation when the attacker controls the URL (which may be realistic within enterprise security products).

Reference

https://github.com/manugarg/pacparser/security/advisories/GHSA-62q6-v997-f7v9