Cross-site scripting (XSS) vulnerability in Bandersnatch 0.4 allows remote malicious users to inject arbitrary JavaScript via a Jabber resource name and possibly other data items, which are stored in conversation logs.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
bandersnatch bandersnatch 0.4 |