CVE-2021-26799

CVE-2021-26799

EPSS 1.0%

Cross Site Scripting (XSS) vulnerability in admin/files/edit in Omeka Classic <=2.7 allows remote attackers to inject arbitrary web script or HTML.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/omeka/Omeka/commit/08bfdf470e234edb68e5307a2fef8c899d89256c https://github.com/omeka/Omeka/issues/935