CVE-2022-45004

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in go/github.com/gophish/gophish

Identifiers

GHSA-55m9-hm92-xm8j, CVE-2022-45004

Package Slug

go/github.com/gophish/gophish

Vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Description

Gophish through 0.12.1 was discovered to contain a cross-site scripting (XSS) vulnerability via a crafted landing page.

Affected Versions

All versions up to 0.12.1

Solution

Unfortunately, there is no solution available yet.

Last Modified

2023-03-23

source