Описание
Dutchoders transfer.sh contains an XSS vulnerability via malicious file upload
dutchcoders Transfer.sh versions 1.4.0 and prior are vulnerable to Cross Site Scripting (XSS) via a malicious document uploaded in transfer.sh. There is a fix commit merged into main for this issue, but an updated version has not yet been released.
Пакеты
Наименование
github.com/dutchcoders/transfer.sh
go
Затронутые версииВерсия исправления
<= 1.4.0
Отсутствует
Связанные уязвимости
CVSS3: 6.1
nvd
больше 3 лет назад
dutchcoders Transfer.sh 1.4.0 is vulnerable to Cross Site Scripting (XSS).