Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Justwriting Project Subscribe
Filtered by product Justwriting
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-41467 1 Justwriting Project 1 Justwriting 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Cross-site scripting (XSS) vulnerability in application/controllers/dropbox.php in JustWriting 1.0.0 and below allow remote attackers to inject arbitrary web script or HTML via the challenge parameter.