PyPi: Ansibleguy-Webui

CVE-2024-36110

Safety vulnerability ID: 71998

This vulnerability was reviewed by experts

The information on this page was manually curated by our Cybersecurity Intelligence Team.

Created at May 28, 2024 Updated at Jan 21, 2025

Scan your Python projects for vulnerabilities →

Advisory

vansibleguy-webui is an open-source WebUI for using Ansible. Multiple forms in affected versions allowed the injection of HTML elements. These are returned to the user after executing job actions and thus evaluated by the browser.

Affected package

ansibleguy-webui

Latest version: 0.0.25

Basic WebUI for using Ansible

Affected versions

Fixed versions

Vulnerability changelog

This vulnerability has no description

Resources

https://github.com/ansibleguy/webui/commit/7737b47e7f7ddbfec7b1418c724598363718d522
https://github.com/advisories/GHSA-927p-xrc2-x2gj
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-36110

Use this package?

Scan your Python project for dependency vulnerabilities in two minutes

Scan your application