Skip to content

Reflected XSS related in import page

Moderate
PierreRambaud published GHSA-98j8-hvjv-x47j Apr 20, 2020

Package

No package listed

Affected versions

1.7.4.0

Patched versions

1.7.6.5

Description

Impact

Reflected XSS when uploading a wrong file.

Patches

The problem is fixed in 1.7.6.5

References

Cross-site Scripting (XSS) - Reflected (CWE-79)

Severity

Moderate

CVE ID

CVE-2020-5286

Weaknesses

No CWEs