VYPR
Unrated severityNVD Advisory· Published Feb 20, 2023· Updated Mar 10, 2025

Cockpit vulnerable to Cross-site Scripting

CVE-2021-32857

Description

Cockpit is a content management system that allows addition of content management functionality to any site. In versions 0.12.2 and prior, bad HTML sanitization in htmleditor.js may lead to cross-site scripting (XSS) issues. There are no known patches for this issue.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.