RSS   Vulnerabilities for 'Ftapi'   RSS

2021-03-19
 
CVE-2021-25278

CWE-79
 

 
FTAPI 4.0 through 4.10 allows XSS via an SVG document to the Background Image upload feature in the Submit Box Template Editor.

 
 
CVE-2021-25277

CWE-79
 

 
FTAPI 4.0 - 4.10 allows XSS via a crafted filename to the alternative text hover box in the file submission component.

 


Copyright 2024, cxsecurity.com

 

Back to Top