Passbolt API is vulnerable to XSS in the url field on the password workspace grid and sidebar
Moderate severity
GitHub Reviewed
Published
May 14, 2022
to the GitHub Advisory Database
•
Updated May 17, 2024
Description
Published by the National Vulnerability Database
Jan 2, 2018
Published to the GitHub Advisory Database
May 14, 2022
Reviewed
May 17, 2024
Last updated
May 17, 2024
Passbolt API version 1.6.4 and older are vulnerable to a XSS in the url field on the password workspace
References