{"id":"GHSA-99g5-5643-xphp","summary":"mm-wiki is vulnerable to Cross-Site Scripting (XSS)","details":"mm-wki v0.2.1 is vulnerable to Cross Site Scripting (XSS).","aliases":["CVE-2021-40289"],"modified":"2023-11-01T04:56:19.218435Z","published":"2022-11-10T19:01:05Z","database_specific":{"github_reviewed":true,"github_reviewed_at":"2022-11-10T22:20:01Z","severity":"MODERATE","nvd_published_at":"2022-11-10T18:15:00Z","cwe_ids":["CWE-79"]},"references":[{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2021-40289"},{"type":"WEB","url":"https://github.com/phachon/mm-wiki/issues/319"},{"type":"PACKAGE","url":"https://github.com/phachon/mm-wiki"}],"affected":[{"package":{"name":"github.com/phachon/mm-wiki","ecosystem":"Go","purl":"pkg:golang/github.com/phachon/mm-wiki"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"},{"last_affected":"0.2.1"}]}],"database_specific":{"source":"https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/11/GHSA-99g5-5643-xphp/GHSA-99g5-5643-xphp.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}]}