Vulnerability Database
Blog
FAQ
Docs
PYSEC-2019-219
See a problem?
Import Source
https://github.com/pypa/advisory-database/blob/main/vulns/recommender-xblock/PYSEC-2019-219.yaml
JSON Data
https://api.test.osv.dev/v1/vulns/PYSEC-2019-219
Aliases
CVE-2018-20858
GHSA-3j5x-7ccf-ppgm
Published
2019-08-09T16:15:00Z
Modified
2023-11-01T04:49:22.819405Z
Summary
[none]
Details
Recommender before 2018-07-18 allows XSS.
References
https://groups.google.com/forum/#!topic/openedx-announce/SF8Sn6MuUTg
https://github.com/edx/RecommenderXBlock/pull/2
https://github.com/advisories/GHSA-3j5x-7ccf-ppgm
Affected packages
PyPI
/
recommender-xblock
Package
Name
recommender-xblock
View open source insights on deps.dev
Purl
pkg:pypi/recommender-xblock
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
1.3.1
PYSEC-2019-219 - OSV