Datasette is an open source multi-tool for exploring and publishing data. The `?_trace=1` debugging feature in Datasette does not correctly escape generated HTML, resulting in a [reflected cross-site scripting](https://owasp.org/www-community/attacks/xss/#reflected-xss-attacks) vulnerability. This vulnerability is particularly relevant if your Datasette installation includes authenticated features using plugins such as [datasette-auth-passwords](https://datasette.io/plugins/datasette-auth-passwords) as an attacker could use the vulnerability to access protected data. Datasette 0.57 and 0.56.1 both include patches for this issue. If you run Datasette behind a proxy you can workaround this issue by rejecting any incoming requests with `?_trace=` or `&_trace=` in their query string parameters.
Metrics
Affected Vendors & Products
| Vendors | Products |
|---|---|
| Datasette |
|
No data.
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: GitHub_M
Published: 2021-06-07T21:20:13
Updated: 2024-08-03T23:25:31.015Z
Reserved: 2021-05-12T00:00:00
Link: CVE-2021-32670
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2021-06-07T22:15:07.650
Modified: 2021-06-14T16:28:37.140
Link: CVE-2021-32670
Redhat
No data.