Lucene search
Veracode Vulnerability DatabaseVERACODE:33342HistoryDec 15, 2021 - 6:33 a.m.
Cross-Site Scripting (XSS)
2021-12-1506:33:19
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
cross-site scripting
owncast
validation
chat
javascript
vulnerability
execution
EPSS
0.001
Percentile
43.7%
owncast/owncast is vulnerable to cross-site scripting. The vulnerability exists due to the lack of validation in chat field, allowing an attacker to inject and execute malicious javascript.
Related
github
github
Unsafe inline XSS in pasting DOM element into chat
2021-12-14 21:48:16
osv
osv
Unsafe inline XSS in pasting DOM element into chat
2021-12-14 21:48:16
CVE-2021-39183
2021-12-14 20:15:07
prion
prion
Buffer overflow
2021-12-14 20:15:00
nvd
nvd
CVE-2021-39183
2021-12-14 20:15:07
cvelist
cvelist
CVE-2021-39183 Unsafe inline XSS Owncast
2021-12-14 20:05:12
cve
cve
CVE-2021-39183
2021-12-14 20:15:07