x/vulndb: potential Go vuln in github.com/influxdata/influxdb: CVE-2018-17572

[tatianab]

CVE-2018-17572 references github.com/influxdata/influxdb, which may be a Go module.

Description:
InfluxDB 0.9.5 has Reflected XSS in the Write Data module.

References:

• NIST: https://nvd.nist.gov/vuln/detail/CVE-2018-17572
• web: https://gist.github.com/Raghavrao29/1cb84f1f2d8ce993fd7b2d1366d35f48
• web: https://github.com/influxdata/influxdb/releases/tag/v0.9.6
• Imported by: https://pkg.go.dev/github.com/influxdata/influxdb?tab=importedby

Cross references:

• Module github.com/influxdata/influxdb appears in issue x/vulndb: potential Go vuln in github.com/influxdata/influxdb/services/httpd: GHSA-2rmp-fw5r-j5qv #780 NOT_IMPORTABLE

See doc/triage.md for instructions on how to triage this report.

modules:
    - module: github.com/influxdata/influxdb
      vulnerable_at: 1.11.1
      packages:
        - package: n/a
cves:
    - CVE-2018-17572
references:
    - web: https://gist.github.com/Raghavrao29/1cb84f1f2d8ce993fd7b2d1366d35f48
    - web: https://github.com/influxdata/influxdb/releases/tag/v0.9.6

[gopherbot]

Change https://go.dev/cl/540721 mentions this issue: data/excluded: batch add 135 excluded reports