GHSA-2xvj-698r-hvrg

Опубликовано: 17 фев. 2023

Источник: github

Github: Не прошло ревью

Описание

Cross Site Scripting vulnerability in YMFE yapo v1.9.1 allows attacker to execute arbitrary code via the remark parameter of the interface edit page.

Ссылки

https://nvd.nist.gov/vuln/detail/CVE-2021-33237
https://github.com/YMFE/yapi/issues/2190

CVE ID

CVE-2021-33237

Связанные уязвимости

CVE-2021-33237

nvd

почти 3 года назад

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. Consult IDs: CVE-2021-36686. Reason: This candidate is a duplicate of CVE-2021-36686. Notes: All CVE users should reference CVE-2021-36686 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.

CVE ID

CVE-2021-33237