CVE-2022-2036

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in packagist/francoisjacquet/rosariosis

Identifiers

GHSA-4hpr-hh77-6q9p, CVE-2022-2036

Package Slug

packagist/francoisjacquet/rosariosis

Vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Description

Cross-site Scripting (XSS) - Stored in GitHub repository francoisjacquet/rosariosis prior to 9.0.1.

Affected Versions

All versions before 9.1

Solution

Upgrade to version 9.1 or above.

Last Modified

2022-06-19

source