Sign in Subscribe

PyPI package

loggerhead

pkg:pypi/loggerhead

Vulnerabilities (1)

CVE	Sev	CVSS	KEV	Affected versions	Fixed in	Published	Description
CVE-2011-0728		—		< 1.18.1	1.18.1	Mar 29, 2011	Cross-site scripting (XSS) vulnerability in templatefunctions.py in Loggerhead before 1.18.1 allows remote authenticated users to inject arbitrary web script or HTML via a filename, which is not properly handled in a revision view.

CVE-2011-0728Mar 29, 2011
affected < 1.18.1fixed 1.18.1
Cross-site scripting (XSS) vulnerability in templatefunctions.py in Loggerhead before 1.18.1 allows remote authenticated users to inject arbitrary web script or HTML via a filename, which is not properly handled in a revision view.