CVE-2017-1000442

CVE-2017-1000442

EPSS 0.5%

Passbolt API version 1.6.4 and older are vulnerable to a XSS in the url field on the password workspace

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.passbolt.com/incidents/20170914_xss_on_resource_urls https://www.passbolt.com/release/notes#September