CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-34364

The Refined GitHub browser extension before 21.6.8 might allow XSS via a link in a document. NOTE: github.com sends Content-Security-Policy headers to, in general, address XSS and other concerns.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 44.3%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

https://github.com/sindresorhus/refined-github/releases/tag/21.6.8
https://vuln.ryotak.me/advisories/47
https://github.com/sindresorhus/refined-github/releases/tag/21.6.8
https://vuln.ryotak.me/advisories/47

Products affected by CVE-2021-34364

Refined-Github Project » Refined-Github » Version: Any

cpe:2.3:a:refined-github_project:refined-github:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-34364

Products

Pricing

Contact Us