CVE-2021-37502

Published February 3rd, 2023

View on NVD ↗

CVSS v3

5.4

MEDIUM

CVSS v2

N/A

Affected

1

PROJECT

Description

Cross Site Scripting (XSS) vulnerability in automad 1.7.5 allows remote attackers to run arbitrary code via the user name field when adding a user.

marcantondahmen/automad

A flat-file content management system and template engine

GitHub

902