CVE-2021-20848 - OpenCVE

Cross-site scripting vulnerability in rwtxt versions prior to v1.8.6 allows a remote attacker to inject an arbitrary script via unspecified vectors.

No CVSS v3.0

AV:N/AC:M/Au:N/C:N/I:P/A:N

Vendors	Products
Rwtxt Project	Rwtxt

Configuration 1 [-]

cpe:2.3:a:rwtxt_project:rwtxt:*:*:*:*:*:*:*:*

References

Link	Resource
https://github.com/schollz/rwtxt	Product Third Party Advisory
https://jvn.jp/en/jp/JVN22515597/index.html	Third Party Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: jpcert

Published: 2021-11-24T08:25:50

Updated: 2021-11-24T08:25:50

Reserved: 2020-12-17T00:00:00

Link: CVE-2021-20848

JSON object: View

NVD Information

Status : Analyzed

Published: 2021-11-24T16:15:13.437

Modified: 2021-11-26T19:01:21.937

Link: CVE-2021-20848

JSON object: View

Redhat Information

No data.

CWE