CVE-2022-2495

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in pypi/microweber/microweber

Identifiers

GHSA-xg72-6c83-ghh4, CVE-2022-2495

Package Slug

pypi/microweber/microweber

Vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Description

Cross-site Scripting (XSS) - Stored in GitHub repository microweber/microweber prior to 1.2.21.

Affected Versions

All versions before 1.2.20

Solution

Upgrade to version 1.2.20 or above.

Last Modified

2022-08-01

source