Medium severity6.1NVD Advisory· Published Feb 15, 2022· Updated Jun 17, 2026
CVE-2021-46251
CVE-2021-46251
Description
A reflected cross-site scripting (XSS) in ScratchOAuth2 before commit 1603f04e44ef67dde6ccffe866d2dca16defb293 allows attackers to execute arbitrary web scripts or HTML via a crafted POST request.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- ScratchOAuth2/ScratchOAuth2description
- Range: <1603f04e44ef67dde6ccffe866d2dca16defb293
Patches
Vulnerability mechanics
References
1- github.com/ScratchVerifier/ScratchOAuth2/commit/1603f04e44ef67dde6ccffe866d2dca16defb293nvdPatchThird Party Advisory
News mentions
0No linked articles in our index yet.