Moderate severityNVD Advisory· Published Sep 15, 2021· Updated Aug 3, 2024
Cross-site Scripting (XSS) - Stored in yourls/yourls
CVE-2021-3785
Description
yourls is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
yourls/yourlsPackagist | < 1.8.2 | 1.8.2 |
Affected products
2Patches
Vulnerability mechanics
Generated on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
4- github.com/advisories/GHSA-m9fq-c9hp-59g7ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2021-3785ghsaADVISORY
- github.com/yourls/yourls/commit/1d8e224ebabb8a4c75b97f026950ed710faab0ffghsax_refsource_MISCWEB
- huntr.dev/bounties/b4085d13-54fa-4419-a2ce-1d780cc31638ghsax_refsource_CONFIRMWEB
News mentions
0No linked articles in our index yet.