Vulnerabilities > Gemirro Project > Gemirro > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2017-11-15 | CVE-2017-16833 | Cross-site Scripting vulnerability in Gemirro Project Gemirro Stored cross-site scripting (XSS) vulnerability in Gemirro before 0.16.0 allows attackers to inject arbitrary web script via a crafted javascript: URL in the "homepage" value of a ".gemspec" file. | 4.3 |