RSS   Podatności dla 'Datepicker calendar'   RSS

2021-02-25
 
CVE-2021-27330

CWE-79
 

 
Triconsole Datepicker Calendar <3.77 is affected by cross-site scripting (XSS) in calendar_form.php. Attackers can read authentication cookies that are still active, which can be used to perform further attacks such as reading browser history, directory listings, and file contents.

 


Copyright 2024, cxsecurity.com

 

Back to Top