Vulnerabilities > Webrecorder

DATE CVE VULNERABILITY TITLE RISK
2021-08-18 CVE-2021-39286 Cross-site Scripting vulnerability in Webrecorder Pywb
Webrecorder pywb before 2.6.0 allows XSS because it does not ensure that Jinja2 templates are autoescaped.
network
low complexity
webrecorder CWE-79
6.1