2021-08-18 17:31:34
mitre
PUBLISHED
Webrecorder pywb before 2.6.0 allows XSS because it does not ensure that Jinja2 templates are autoescaped.