CVE-2021-3950

CVE-2021-3950

• CWE-79 — CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

• django-helpdesk / django-helpdesk/django-helpdesk — v=unspecified <0.3.1 [affected]

• 3.0 score=8.8 severity=HIGH CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

• https://huntr.dev/bounties/4d7a5fdd-b2de-467a-ade0-3f2fb386638e x_refsource_CONFIRM
• https://github.com/django-helpdesk/django-helpdesk/commit/04483bdac3b5196737516398b5ce0383875a5c60 x_refsource_MISC