Vulnerabilities > Gemirro Project > Gemirro > Medium

DATE CVE VULNERABILITY TITLE RISK
2017-11-15 CVE-2017-16833 Cross-site Scripting vulnerability in Gemirro Project Gemirro
Stored cross-site scripting (XSS) vulnerability in Gemirro before 0.16.0 allows attackers to inject arbitrary web script via a crafted javascript: URL in the "homepage" value of a ".gemspec" file.
4.3