Cross Site Scripting Vulnerability in Portainer by Portainer Labs
CVE-2021-42650
6.1MEDIUM
What is CVE-2021-42650?
A Cross Site Scripting (XSS) vulnerability exists in Portainer prior to version 2.9.1. This flaw allows attackers to inject malicious scripts through the node input box in Custom Templates, potentially compromising user data and leading to further exploitation of the application. It is essential for users to update to the latest version and ensure proper input validation to mitigate the risks associated with this vulnerability.
