CVE-2022-2495
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in packagist/microweber/microweber
Identifiers
GHSA-xg72-6c83-ghh4, CVE-2022-2495
Package Slug
packagist/microweber/microweber
Vulnerability
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Description
Cross-site Scripting (XSS) prior to 1.2.21.
Affected Versions
All versions before 1.2.20
Solution
Upgrade to version 1.2.20 or above.
Last Modified
2022-08-03
| source |