CVE-2022-3607: OctoPrint vulnerable to Special Element Injection
(updated )
OctoPrint prior to 1.8.3 is vulnerable to Special Element Injection.
References
- github.com/advisories/GHSA-rj5f-vm79-5j84
- github.com/octoprint/octoprint
- github.com/octoprint/octoprint/commit/3cca3a43f3d085e9bbe5a5840c8255bb1b5d052e
- github.com/pypa/advisory-database/tree/main/vulns/octoprint/PYSEC-2022-42975.yaml
- huntr.dev/bounties/2d1db3c9-93e8-4902-a55b-5ea53c22aa11
- nvd.nist.gov/vuln/detail/CVE-2022-3607
Code Behaviors & Features
Detect and mitigate CVE-2022-3607 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →