The fileview package v0.1.6 has inadequate output encoding and escaping, which leads to a stored Cross-Site Scripting (XSS) vulnerability in files it serves.
[
{
"product": "fileview",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Not fixed"
}
]
}
]