PT-2023-10329 · Unknown · Django-Ucamlookup
Published
2023-01-05
·
Updated
2024-08-06
·
CVE-2016-15010
CVSS v3.1
6.1
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
django-ucamlookup versions up to 1.9.1
Description
A vulnerability was found in the Lookup Handler component of django-ucamlookup, leading to cross-site scripting. The attack can be launched remotely. This issue affects products that are no longer supported by the maintainer.
Recommendations
Upgrading to version 1.9.2 is able to address this issue. It is recommended to upgrade the affected component.
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Django-Ucamlookup