GHSA-mphm-gqh9-q59x

Source

https://github.com/advisories/GHSA-mphm-gqh9-q59x

Import Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/05/GHSA-mphm-gqh9-q59x/GHSA-mphm-gqh9-q59x.json

Aliases

CVE-2023-27075

Published

2023-05-04T03:30:22Z

Modified

2023-11-08T04:12:03.197597Z

Details

A cross-site scripting vulnerability (XSS) in the component microbin/src/pasta.rs of Microbin v1.2.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload.

References

https://nvd.nist.gov/vuln/detail/CVE-2023-27075
https://github.com/szabodanika/microbin/issues/142
https://github.com/szabodanika/microbin/pull/143
https://github.com/szabodanika/microbin/pull/143/commits/6907bb4f13faf13e45d4a2cd0f9a8c562086e6ca
https://github.com/szabodanika/microbin

Affected packages

crates.io / microbin

Package

Name: microbin

Affected ranges

Type: SEMVER
Events: Introduced

0The exact introduced commit is unknown

Fixed

1.2.1