In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applicationsLearn about Cross-site Scripting (XSS) vulnerabilities in an interactive lesson.
Start learningUpgrade actionhero
to version 15.1.2 or higher.
actionhero
is a multi-transport API Server with integrated cluster capabilities and delayed tasks.
Affected versions of the package are vulnerable to Cross-site Scripting (XSS) attacks. An attacker can request a file name which includes HTML characters that are not escaped in the response.
<>