← volver
CVE-2021-43675

CVE-2021-43675

EPSS 0.9%
Lychee-v3 3.2.16 is affected by a Cross Site Scripting (XSS) vulnerability in php/Access/Guest.php. The function exit will terminate the script and print the message to the user. The message will contain albumID which is controlled by the user.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://github.com/LycheeOrg/Lycheehttps://github.com/LycheeOrg/LycheeOrg.github.io/blob/master/docs/releases.md#v3216https://github.com/LycheeOrg/Lychee-v3