CVE-2020-28364
pypi/locust
Cross-site Scripting
A stored cross-site scripting (XSS) vulnerability affects the Web UI in Locust, if the installation violates the usage expectations by exposing this UI to outside users.
All versions before 1.3.2
Upgrade to version 1.3.2 or above.
2020-11-18
source |