patch-1
Ritik Chaddha 2022-10-13 15:50:32 +05:30 committed by GitHub
parent d785470cef
commit 3b43087a0e
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 1 deletions

View File

@ -2,7 +2,7 @@ id: CVE-2021-27909
info: info:
name: Mautic - Cross-Site Scripting name: Mautic - Cross-Site Scripting
author: kiransau author: kiransau
severity: medium severity: medium
description: Mautic versions prior to 3.3.4 are vulnerable to reflected XSS on password reset page where a vulnerable parameter, "bundle," in the URL could allow an attacker to execute Javascript code. description: Mautic versions prior to 3.3.4 are vulnerable to reflected XSS on password reset page where a vulnerable parameter, "bundle," in the URL could allow an attacker to execute Javascript code.
reference: reference: