CVE-2021-40922

Published
View on NVD ↗
CVSS v3
6.1
MEDIUM
CVSS v2
4.3
MEDIUM
Affected
1
PROJECT

Description

Cross-site scripting (XSS) vulnerability in install/index.php in bugs 1.8 and below version allows remote attackers to inject arbitrary web script or HTML via the last_name parameter.

pixeline/bugs
pixeline/bugs
Simple Issue Tracking for Teams. Built in Laravel 3 (php/mysql)
GitHubGitHub
87