PT-2020-21291 · Swagger · Swagger-Ui

Published

2020-09-01

·

Updated

2020-09-01

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
Name of the Vulnerable Software and Affected Versions swagger-ui versions prior to 2.2.1
Description The issue concerns cross-site scripting via the url query string parameter.
Recommendations Update to version 2.2.1 or later.

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

GHSA-G336-C7WV-8HP3

Affected Products

Swagger-Ui