PyPI package
octoprint
pkg:pypi/octoprint
Vulnerabilities (22)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-32561 | — | < 1.6.0 | 1.6.0 | May 11, 2021 | OctoPrint before 1.6.0 allows XSS because API error messages include the values of input parameters. | ||
| CVE-2021-32560 | — | < 1.6.0 | 1.6.0 | May 11, 2021 | The Logging subsystem in OctoPrint before 1.6.0 has incorrect access control because it attempts to manage files that are not *.log files. |
- CVE-2021-32561May 11, 2021affected < 1.6.0fixed 1.6.0
OctoPrint before 1.6.0 allows XSS because API error messages include the values of input parameters.
- CVE-2021-32560May 11, 2021affected < 1.6.0fixed 1.6.0
The Logging subsystem in OctoPrint before 1.6.0 has incorrect access control because it attempts to manage files that are not *.log files.
Page 2 of 2