RSS   Vulnerabilities for 'Scully'   RSS

2021-01-14
 
CVE-2020-28470

CWE-74
 

 
This affects the package @scullyio/scully before 1.0.9. The transfer state is serialised with the JSON.stringify() function and then written into the HTML page.

 


Copyright 2024, cxsecurity.com

 

Back to Top