Описание
Thelia Cross-site Scripting vulnerability in BackOffice
The BackOffice of Thelia (error.html template) has a cross-site scripting vulnerability in version 2.1.0 and 2.1.1 but not version 2.0.X. Version 2.1.2 contains a patch for the issue.
Пакеты
Наименование
thelia/thelia
composer
Затронутые версииВерсия исправления
>= 2.1.0, < 2.1.2
2.1.2
6.1 Medium
CVSS3
Дефекты
CWE-79
6.1 Medium
CVSS3
Дефекты
CWE-79