CVE-2021-37502
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2021-37502
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-37502.json
- Aliases
- Published
- 2023-02-03T18:15:13Z
- Modified
- 2023-11-29T08:22:42.749155Z
- Details
-
Cross Site Scripting (XSS) vulnerability in automad 1.7.5 allows remote attackers to run arbitrary code via the user name field when adding a user.
- References
Affected packages
Git / github.com/marcantondahmen/automad
Affected ranges
- Type
- GIT
- Repo
- https://github.com/marcantondahmen/automad
- Events
-
Introduced0The exact introduced commit is unknownLast affected
Affected versions
0.*
0.1
0.10
0.2
0.3
0.4
0.5
0.6
0.7
0.8
0.9
1.*
1.0.0
1.0.0-beta1
1.0.0-beta2
1.0.0-beta3
1.0.0-beta4
1.0.0-beta5
1.0.1
1.0.2
1.0.3
1.0.4
1.1.0
1.2.0
1.2.1
1.2.2
1.2.3
1.2.4
1.2.5
1.2.6
1.3.0
1.3.1
1.3.2
1.4.0
1.4.1
1.4.2
1.4.3
1.5.0
1.5.1
1.5.2
1.5.3
1.5.4
1.6.0
1.6.1
1.6.10
1.6.11
1.6.12
1.6.2
1.6.3
1.6.4
1.6.5
1.6.6
1.6.7
1.6.8
1.6.9
1.7.0
1.7.1
1.7.2
1.7.3
1.7.4
1.7.5