Security Advisory

CVE-2021-29271

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-03-27 17:57:06

Last updated 2024-08-03 22:02:51

Assigner mitre

State PUBLISHED

Description

remark42 before 1.6.1 allows XSS, as demonstrated by "Locator: Locator{URL:" followed by an XSS payload. This is related to backend/app/store/comment.go and backend/app/store/service/service.go.

← Browse all CVEs View on cve.org ↗