brasil.gov.portal@1.0.2.1 vulnerabilities

Implementação Modelo da Identidade Digital de Governo

latest version

2.1.1
latest non vulnerable version

2.1.1
first published

11 years ago
latest version published

5 years ago
licenses detected
- GPL-2.0
  [0,)
View brasil.gov.portal package health on Snyk Advisor Open this link in a new tab

Known vulnerabilities in the brasil.gov.portal package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
M Cross-site Scripting (XSS) `brasil.gov.portal` is an Implementation Model of the Government Digital Identity. brasil.gov.portal before 1.5.1 uses Plone <4.3.15 which is vulnerable to several XSS and redirect flaws, and a sandbox escape.	[,1.5.1)