Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
dutchcoders Transfer.sh 1.4.0 is vulnerable to Cross Site Scripting (XSS).
Advisories for Golang/Github.com/Dutchcoders/Transfer.sh package
2022
2021
Path Traversal
Dutchcoders transfer.sh allows Directory Traversal for deleting files.
Cross-site Scripting
Dutchcoders transfer.sh allows XSS via an inline view.