vulnerability cross site scripting (xss)
severity 7.5
language python
registry other

:book: Description

JinjaFx is a Templating Tool that uses Jinja2 as the templating engine. It is written in Python and is extremely lightweight and hopefully simple - it doesn't require any Python modules that aren't in the base install, with the exception of jinja2 for obvious reasons, this package is vulnerable for arbitaryCodeexecution


:recycle: Steps To Reproduce-:

  1. git clone https://github.com/cmason3/jinjafx
  2. run as in poc.png poc

:telescope: POC


💥 Impact

Arbitary code execution