Moderate severity vulnerability that affects roundup

2019-04-09T19:47:14
ID GHSA-926Q-WXR6-3CRQ
Type github
Reporter GitHub Advisory Database
Modified 2019-07-03T21:02:07

Description

Roundup 1.6 allows XSS via the URI because frontends/roundup.cgi and roundup/cgi/wsgi_handler.py mishandle 404 errors.