PT-2019-20177 — Invenio Invenio-Previewer

PT-2019-20177 · Invenio · Invenio-Previewer

Published

2019-07-29

Updated

2019-07-29

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions invenio-previewer versions prior to 1.0.0a12

Description The issue allows for cross-site scripting (XSS), which is a type of attack where an attacker can inject malicious scripts into a website.

Recommendations For versions prior to 1.0.0a12, update to version 1.0.0a12 or later to resolve the issue.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

PYSEC-2019-96

Affected Products

Invenio-Previewer