EPSS
Percentile
40.5%
octoprint is vulnerable to cross-site scripting. The vulnerability exists in webcam stream test due to lack of sanitization which allows a malicious attacker to inject and execute arbitrary javascript.
github.com/advisories/GHSA-h8pc-j334-jjhm
github.com/octoprint/octoprint/commit/6d259d7e6f5b0de9a1c762831537a386e53978d3
huntr.dev/bounties/cb545c63-a3c1-4d57-8f06-e4593ab389bf
huntr.dev/bounties/cb545c63-a3c1-4d57-8f06-e4593ab389bf/