CVE-2019-16145 (padrino-contrib): padrino-contrib XSS via caption parameter of breadcrumbs helper

CVE: CVE-2019-16145 ( NVD )
GHSA: GHSA-rwpr-83g3-96g7
Vendor Advisory: https://github.com/padrino/padrino-contrib/pull/35

September 23rd, 2019

padrino-contrib XSS via caption parameter of breadcrumbs helper

Published: September 23, 2019

CVSS v3.x: 6.1 (Medium)

None available.

The breadcrumbs contributed module through 0.2.0 for Padrino Framework allows XSS via a caption.