Vulnerabilities > Justwriting Project

DATE CVE VULNERABILITY TITLE RISK
2021-10-01 CVE-2021-41467 Cross-site Scripting vulnerability in Justwriting Project Justwriting 1.0.0
Cross-site scripting (XSS) vulnerability in application/controllers/dropbox.php in JustWriting 1.0.0 and below allow remote attackers to inject arbitrary web script or HTML via the challenge parameter.
network
low complexity
justwriting-project CWE-79
6.1