Vulnerability feed

Vulnerability

CVE-2021-46888

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2021-46888
Description:: An issue was discovered in hledger before 1.23. A Stored Cross-Site Scripting (XSS) vulnerability exists in toBloodhoundJson that allows an attacker to execute JavaScript by encoding user-controlled values in a payload with base64 and parsing them with the atob function.
Last updated date:: 05/26/2023

Type:: exploit
Confidence:: HIGH
Date of publishing:: 05/26/2023
Reference url to background: https://github.com/simonmichael/hledger/issues/1525

Type:: exploit
Confidence:: HIGH
Date of publishing:: 05/26/2023
Reference url to background: https://github.com/simonmichael/hledger/pull/1663

Type:: exploit
Confidence:: HIGH
Date of publishing:: 05/26/2023
Reference url to background: https://www.youtube.com/watch?v=QnRO-VkfIic

Vulnerability Feed Contributors About Blog

@inTheWild

©2025 |