CVE-2021-41132: Inconsistent input sanitisation leads to XSS vectors
(updated )
OMERO.web before 5.11.0 and OMERO.figure before 4.4.1.
References
- github.com/advisories/GHSA-g67g-hvc3-xmvf
- github.com/ome/omero-web
- github.com/ome/omero-web/commit/0168067accde5e635341b3c714b1d53ae92ba424
- github.com/ome/omero-web/security/advisories/GHSA-g67g-hvc3-xmvf
- github.com/pypa/advisory-database/tree/main/vulns/omero-figure/PYSEC-2021-379.yaml
- github.com/pypa/advisory-database/tree/main/vulns/omero-web/PYSEC-2021-372.yaml
- nvd.nist.gov/vuln/detail/CVE-2021-41132
- www.openmicroscopy.org/security/advisories/2021-SV3
Detect and mitigate CVE-2021-41132 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →