Medium severity6.1NVD Advisory· Published Feb 4, 2022· Updated Jun 17, 2026
CVE-2021-43635
CVE-2021-43635
Description
A Cross Site Scripting (XSS) vulnerability exists in Codex before 1.4.0 via Notebook/Page name field, which allows malicious users to execute arbitrary code via a crafted http code in a .json file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Codex/Codexdescription
Patches
Vulnerability mechanics
References
2- github.com/jcv8000/Codex/issues/8nvdExploitThird Party Advisory
- github.com/jcv8000/Codex/releases/tag/v1.4.1nvdRelease NotesThird Party Advisory
News mentions
0No linked articles in our index yet.