PT-2023-10344 · Unknown · Generator-Hottowel
Ssbrewster
·
Published
2023-02-20
·
Updated
2024-05-17
·
CVE-2016-15025
CVSS v3.1
6.1
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
generator-hottowel version 0.0.11
Description
A problematic issue was found in the 404 Error Handler component, specifically in the file app/templates/src/server/ app.js. This issue leads to cross-site scripting and can be exploited remotely.
Recommendations
For generator-hottowel version 0.0.11, apply the patch c17092fd4103143a9ddab93c8983ace8bf174396 to fix this issue.
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Generator-Hottowel