CVE-2020-36827

Published March 24th, 2024

View on NVD ↗

CVSS v3

5.4

MEDIUM

CVSS v2

N/A

Affected

1

PROJECT

Description

The XAO::Web module before 1.84 for Perl mishandles < and > characters in JSON output during use of json-embed in Web::Action.

amaltsev/XAO-Web

GitHub