Backstage is vulnerable to cross-site scripting. An attacker is able to inject malicious script by embedding the script within an object
element of uploaded documentation content, allowing the malicious script to get executed when the same documentation page is visited or the malicious object stored is accessed.
CPE | Name | Operator | Version |
---|---|---|---|
@backstage/plugin-techdocs | le | 0.9.4 |
github.com/backstage/backstage/commit/aad98c544e59369901fe9e0a85f6357644dceb5c
github.com/backstage/backstage/compare/f2b339a30cc3f0343e8bd366f5e33b4cc9f3b371...348c46896fed3a0b92bd376ad5825323637e402a
github.com/backstage/backstage/releases/tag/release-2021-06-03
github.com/backstage/backstage/security/advisories/GHSA-gg96-f8wr-p89f