3 matches found
CVE-2021-23347
creationtimestamp| type| source ---|---|--- 2021-03-03 12:45:20+00:00| seen| Telegram/Ch4JrzSvxZD516MZntB6z3mwHLlj0eQ3uGzyq3XnfjPzBcM...
CVE-2021-23347
The package github.com/argoproj/argo-cd/cmd before 1.7.13, from 1.8.0 and before 1.8.6 are vulnerable to Cross-site Scripting XSS the SSO provider connected to Argo CD would have to send back a malicious error message containing JavaScript to the user...
CVE-2021-23347
CVE-2021-23347 affects the Argo CD project, specifically the command line interface in the package github.com/argoproj/argo-cd/cmd before 1.7.13, and in 1.8.0 up to before 1.8.6. The underlying issue is a Cross-site Scripting (XSS) vulnerability triggered when the SSO provider returns a malicious...