{"id":"PYSEC-2022-200","details":"Cross-site Scripting (XSS) - DOM in GitHub repository octoprint/octoprint prior to 1.8.0.","aliases":["CVE-2022-1430","GHSA-x7r7-wmj8-vv5g"],"modified":"2023-11-08T04:07:48.625524Z","published":"2022-05-18T14:15:00Z","references":[{"type":"FIX","url":"https://github.com/octoprint/octoprint/commit/8087528e4a7ddd15c7d95ff662deb5ef7de90045"},{"type":"WEB","url":"https://huntr.dev/bounties/0cd30d71-1e32-4a0b-b4c3-faaa1907b541"},{"type":"ADVISORY","url":"https://github.com/advisories/GHSA-x7r7-wmj8-vv5g"}],"affected":[{"package":{"name":"octoprint","ecosystem":"PyPI","purl":"pkg:pypi/octoprint"},"ranges":[{"type":"GIT","repo":"https://github.com/octoprint/octoprint","events":[{"introduced":"0"},{"fixed":"8087528e4a7ddd15c7d95ff662deb5ef7de90045"}]},{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.8.0"}]}],"versions":["1.3.11","1.3.12","1.3.12rc1","1.3.12rc3","1.4.0","1.4.0rc1","1.4.0rc2","1.4.0rc3","1.4.0rc4","1.4.0rc5","1.4.0rc6","1.4.1","1.4.1rc1","1.4.1rc2","1.4.1rc3","1.4.1rc4","1.4.2","1.5.0","1.5.0rc1","1.5.0rc2","1.5.0rc3","1.5.1","1.5.2","1.5.3","1.6.0","1.6.0rc1","1.6.0rc2","1.6.0rc3","1.6.1","1.7.0","1.7.0rc1","1.7.0rc2","1.7.0rc3","1.7.1","1.7.2","1.7.3","1.8.0rc1","1.8.0rc2","1.8.0rc3","1.8.0rc4","1.8.0rc5"],"database_specific":{"source":"https://github.com/pypa/advisory-database/blob/main/vulns/octoprint/PYSEC-2022-200.yaml"}}],"schema_version":"1.7.3"}