RSS   Vulnerabilities for 'Remark42'   RSS

2021-03-27
 
CVE-2021-29271

CWE-79
 

 
remark42 before 1.6.1 allows XSS, as demonstrated by "Locator: Locator{URL:" followed by an XSS payload. This is related to backend/app/store/comment.go and backend/app/store/service/service.go.

 


Copyright 2024, cxsecurity.com

 

Back to Top