The BackOffice of Thelia (error.html
template) has a cross-site scripting vulnerability in version 2.1.0 and 2.1.1 but not version 2.0.X. Version 2.1.2 contains a patch for the issue.
CPE | Name | Operator | Version |
---|---|---|---|
thelia/thelia | eq | 2.1.0 | |
thelia/thelia | eq | 2.1.1 |