Contentful through 2020-05-21 for Python allows reflected XSS, as demonstrated by the api parameter to the-example-app.py.
CPE | Name | Operator | Version |
---|---|---|---|
contentful | eq | 1.11.2 | |
contentful | eq | 1.0.3 | |
contentful | eq | 1.0.0 | |
contentful | eq | 1.11.1 | |
contentful | eq | 1.1.1 | |
contentful | eq | 1.8.0 | |
contentful | eq | 1.11.3 | |
contentful | eq | 1.4.2 | |
contentful | eq | 1.4.1 | |
contentful | eq | 1.1.0 |