Vulnerabilities > Localstack > Localstack > 0.12.6
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-05-07 | CVE-2021-32090 | Command Injection vulnerability in Localstack 0.12.6 The dashboard component of StackLift LocalStack 0.12.6 allows attackers to inject arbitrary shell commands via the functionName parameter. | 10.0 |
| 2021-05-07 | CVE-2021-32091 | Cross-site Scripting vulnerability in Localstack 0.12.6 A Cross-site scripting (XSS) vulnerability exists in StackLift LocalStack 0.12.6. | 4.3 |