Protozeit

**Name of the Vulnerable Software and Affected Versions** Cadwyn versions 5.4.3 and below **Description** Cadwyn is a production-ready, community-driven, modern Stripe-like API versioning tool in FastAPI. The `version` parameter of the `/docs` endpoint is susceptible to a Reflected Cross-Site Scripting (XSS) attack. This allows an attacker to execute JavaScript code on a user's session via a one-click attack. The vulnerable code resides within the `swagger dashboard` and `redoc dashboard` functions, specifically utilizing the `get swagger ui html` function from FastAPI without proper encoding or sanitization of the `version` parameter. The user-controlled injection occurs within a `<script>` tag context. **Recommendations** Cadwyn versions 5.4.3 and below: Upgrade to version 5.4.4 or later to resolve this issue.

Name of the Vulnerable Software and Affected Versions: Visionatrix versions 1.5.0 through 2.5.0 Description: The issue concerns a Reflected XSS (Cross-Site Scripting) attack via the "/docs/flows" endpoint, allowing full takeover of the application and exfiltration of secrets stored in the application. This is due to the use of the `get swagger ui html` function from FastAPI, which does not encode or sanitize its arguments before generating the HTML for the swagger documentation page. Any user of this application can be targeted with a one-click attack that can takeover their session and all the secrets that may be contained within it. Recommendations: For versions 1.5.0 through 2.5.0, update to version 2.5.1 to resolve the issue. As a temporary workaround, consider restricting access to the "/docs/flows" endpoint until the update is applied.