Vulnerabilities > Sexstatic Project > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2018-06-01 | CVE-2018-3755 | Cross-site Scripting vulnerability in Sexstatic Project Sexstatic 0.6.0/0.6.2 XSS in sexstatic <=0.6.2 causes HTML injection in directory name(s) leads to Stored XSS when malicious file is embed with <iframe> element used in directory name. | 6.1 |