1 results (0.001 seconds)
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2016-15010 – University of Cambridge django-ucamlookup Lookup cross site scripting
https://notcve.org/view.php?id=CVE-2016-15010
A vulnerability classified as problematic was found in University of Cambridge django-ucamlookup up to 1.9.1. Affected by this vulnerability is an unknown functionality of the component Lookup Handler. The manipulation leads to cross site scripting. The attack can be launched remotely. Upgrading to version 1.9.2 is able to address this issue. • https://github.com/uisautomation/django-ucamlookup/commit/5e25e4765637ea4b9e0bf5fcd5e9a922abee7eb3 https://github.com/uisautomation/django-ucamlookup/releases/tag/1.9.2 https://vuldb.com/?ctiid.217441 https://vuldb.com/?id.217441 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •