{"id":"CVE-2021-3780","details":"peertube is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","aliases":["GHSA-f2c5-997w-7f5c"],"modified":"2026-04-12T01:57:18.298102Z","published":"2021-09-15T12:15:16.133Z","references":[{"type":"FIX","url":"https://github.com/chocobozzz/peertube/commit/0ea2f79d45b301fcd660efc894469a99b2239bf6"},{"type":"EVIDENCE","url":"https://huntr.dev/bounties/282807a8-4bf5-4fe2-af62-e05f945b3d65"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/chocobozzz/peertube","events":[{"introduced":"0"},{"fixed":"c6fb386adc5104db689d1e7b2087c03a71e9974a"},{"fixed":"0ea2f79d45b301fcd660efc894469a99b2239bf6"}],"database_specific":{"cpe":"cpe:2.3:a:framasoft:peertube:*:*:*:*:*:*:*:*","source":["CPE_FIELD","REFERENCES"],"extracted_events":[{"introduced":"0"},{"fixed":"3.4.0"}]}}],"versions":["v0.0.11-alpha","v0.0.12-alpha","v0.0.13-alpha","v0.0.14-alpha","v0.0.16-alpha","v0.0.17-alpha","v0.0.18-alpha","v0.0.19-alpha","v0.0.20-alpha","v0.0.21-alpha","v0.0.22-alpha","v0.0.23-alpha","v0.0.27-alpha","v0.0.28-alpha","v0.0.29-alpha","v0.0.3-alpha","v0.0.4-alpha","v0.0.5-alpha","v0.0.6-alpha","v0.0.8-alpha","v0.0.9-alpha","v1.0.0-alpha.1","v1.0.0-alpha.10","v1.0.0-alpha.2","v1.0.0-alpha.3","v1.0.0-alpha.4","v1.0.0-alpha.5","v1.0.0-alpha.6","v1.0.0-alpha.7","v1.0.0-alpha.8","v1.0.0-alpha.9","v1.0.0-beta.1","v1.0.0-beta.10.pre.1","v1.0.0-beta.10.pre.2","v1.0.0-beta.10.pre.3","v1.0.0-beta.11","v1.0.0-beta.12","v1.0.0-beta.13","v1.0.0-beta.14","v1.0.0-beta.15","v1.0.0-beta.16","v1.0.0-beta.2","v1.0.0-beta.3","v1.0.0-beta.4","v1.0.0-beta.5","v1.0.0-beta.6","v1.0.0-beta.7","v1.0.0-beta.8","v1.0.0-beta.9","v1.0.0-rc.1","v1.0.0-rc.2","v1.1.0","v1.1.0-alpha.1","v1.1.0-rc.1","v1.3.0-rc.1","v1.4.0-rc.1","v2.0.0","v2.0.0-rc.1","v2.1.0-rc.1","v2.2.0-rc.1","v2.3.0-rc.1","v2.4.0","v2.4.0-rc.1","v3.0.0","v3.0.0-rc.1","v3.1.0-rc.1","v3.3.0","v3.3.0-rc.1","v3.4.0-rc.1"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-3780.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}]}