Vulnerabilities > Kiwix > Libkiwix

DATE CVE VULNERABILITY TITLE RISK
2022-03-25 CVE-2022-27920 Cross-site Scripting vulnerability in multiple products
libkiwix 10.0.0 and 10.0.1 allows XSS in the built-in webserver functionality via the search suggestions URL parameter.
network
low complexity
kiwix fedoraproject CWE-79
6.1
6.1