๐ CVE-2022-4526 | django-photologue up to 3.15.1 Default Template photo_detail.html object.caption cross site scripting (ID 223)
๐ก Newskategorie: Sicherheitslรผcken
๐ Quelle: vuldb.com
A vulnerability was found in django-photologue up to 3.15.1 and classified as problematic. Affected by this issue is some unknown functionality of the file photologue/templates/photologue/photo_detail.html of the component Default Template Handler. The manipulation of the argument object.caption leads to cross site scripting. This vulnerability is handled as CVE-2022-4526. The attack may be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue. ...