Vulnerabilities > Bitcoin ABE Project
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-04-20 | CVE-2020-11944 | Cross-site Scripting vulnerability in Bitcoin-Abe Project Bitcoin-Abe Abe (aka bitcoin-abe) through 0.7.2, and 0.8pre, allows XSS in __call__ in abe.py because the PATH_INFO environment variable is mishandled during a PageNotFound exception. | 4.3 |