HIGH
GHSA-hwpg-x5hw-vpv9
ChangeDetection.io XSS in watch overview
Details
### Impact XSS - Errors in filters from website page change detection watches were not being filtered.
### Patches
0.50.4
Are you affected?
Enter the version of the package you're using.
Affected packages
PyPI / changedetection-io
Introduced in:
0 Fixed in: 0.50.4 Fix
pip install --upgrade 'changedetection-io>=0.50.4' References
- https://github.com/dgtlmoon/changedetection.io/security/advisories/GHSA-hwpg-x5hw-vpv9 [WEB]
- https://nvd.nist.gov/vuln/detail/CVE-2025-52558 [ADVISORY]
- https://github.com/dgtlmoon/changedetection.io/commit/3d5a544ea674cfce517adcd498877a8d760d0931 [WEB]
- https://github.com/dgtlmoon/changedetection.io [PACKAGE]