Moderate severityNVD Advisory· Published Sep 15, 2021· Updated Aug 3, 2024
Cross-site Scripting (XSS) - Reflected in yourls/yourls
CVE-2021-3783
Description
yourls is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
yourls/yourlsPackagist | <= 1.8.2 | — |
Affected products
2Patches
Vulnerability mechanics
Generated on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
4- github.com/advisories/GHSA-cpq8-x35g-m439ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2021-3783ghsaADVISORY
- github.com/yourls/yourls/commit/94f6bab91182142c96ff11f481585b445449efd4ghsax_refsource_MISCWEB
- huntr.dev/bounties/b688e553-d0d9-4ddf-95a3-ff4b78004984ghsax_refsource_CONFIRMWEB
News mentions
0No linked articles in our index yet.