SUSE CVE-2021-46888

An issue was discovered in hledger before 1.23. A Stored Cross-Site Scripting XSS vulnerability exists in toBloodhoundJson that allows an attacker to execute JavaScript by encoding user-controlled values in a payload with base64 and parsing them with the atob function...

CVE-2021-46888

An issue was discovered in hledger before 1.23. A Stored Cross-Site Scripting XSS vulnerability exists in toBloodhoundJson that allows an attacker to execute JavaScript by encoding user-controlled values in a payload with base64 and parsing them with the atob function...

PT-2023-12608

Name of the Vulnerable Software and Affected Versions hledger versions prior to 1.23 hledger-web versions prior to 1.23 Description A Stored Cross-Site Scripting XSS issue exists in the toBloodhoundJson function, allowing an attacker to execute JavaScript by encoding user-controlled values in a...

hledger 跨站脚本漏洞

hledger is HLEDGER open source a powerful, fast and intuitive plain text accounting tool with CLI, TUI and Web interfaces. A security vulnerability exists in hledger versions prior to 1.23 that stems from a problem in toBloodhoundJson that allows an attacker to execute JavaScript by encoding...