CVE-2022-1997

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in packagist/francoisjacquet/rosariosis

Identifiers

GHSA-wjh9-344g-vc49, CVE-2022-1997

Package Slug

packagist/francoisjacquet/rosariosis

Vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Description

Cross-site Scripting (XSS) - Stored in GitHub repository francoisjacquet/rosariosis prior to 9.0.

Affected Versions

All versions before 9.0

Solution

Upgrade to version 9.0 or above.

Last Modified

2022-06-10

source