CVE-2022-2925

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in packagist/appwrite/server-ce

Identifiers

CVE-2022-2925

Package Slug

packagist/appwrite/server-ce

Vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Description

Cross-site Scripting (XSS) - Stored in GitHub repository appwrite/appwrite prior to 1.0.0-RC1.

Affected Versions

All versions up to 0.15.3

Solution

Upgrade to version 1.0.0 or above.

Last Modified

2022-09-14

source