EPSS
Percentile
48.5%
growi is vulnerable to cross-site scripting. The vulnerability exists through unsanitized perimeters that allows attackers to inject malicious code via unspecific vectors on the user’s web browser.
github.com/weseek/growi
jvn.jp/en/jp/JVN57544707/index.html
jvndb.jvn.jp/en/contents/2021/JVNDB-2021-000005.html
weseek.co.jp/security/2021/01/18/vulnerability/growi-prevent-xss4/