PT-2019-20176 — Invenio Invenio-Communities

PT-2019-20176 · Invenio · Invenio-Communities

Published

2019-07-29

Updated

2019-07-29

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions invenio-communities versions prior to 1.0.0a20

Description The issue allows for cross-site scripting (XSS), which is a type of attack where an attacker can inject malicious scripts into a website.

Recommendations For versions prior to 1.0.0a20, update to version 1.0.0a20 or later to resolve the issue.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

PYSEC-2019-95

Affected Products

Invenio-Communities