4 matches found
CVE-2021-3780
peertube is vulnerable to Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'...
CVE-2021-3780
peertube is vulnerable to Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'...
CVE-2021-3780 Cross-site Scripting (XSS) - Stored in chocobozzz/peertube
peertube is vulnerable to Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'...
CVE-2021-3780
CVE-2021-3780 is an XSS vulnerability in Peertube. Multiple connected sources describe a stored XSS in Peertube, stemming from insufficient input validation/filtering, affecting versions prior to v3.4.0. An attacker could upload an SVG image and then share its URL to cause JavaScript execution in...