CVE-2018-8035

This vulnerability relates to the user’s browser processing of DUCC webpage input data.The javascript comprising Apache UIMA DUCC (<= 2.2.2) which runs in the user's browser does not sufficiently filter user supplied inputs, which may result in unintended execution of user supplied javascript code. Date published : 2019-05-01 http://www.securityfocus.com/bid/108195

https://uima.apache.org/security_report