CVE-2017-20100

A vulnerability was found in Air Transfer 1.0.14/1.2.1. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to basic cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
References
Link Resource
https://vuldb.com/?id.97280 Third Party Advisory
https://www.vulnerability-lab.com/get_content.php?id=2035 Exploit Third Party Advisory
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:air_transfer_project:air_transfer:1.0.14:*:*:*:*:iphone_os:*:*
cpe:2.3:a:air_transfer_project:air_transfer:1.2.1:*:*:*:*:iphone_os:*:*
cpe:2.3:a:air_transfer_project:air_transfer:1.2.1:*:*:*:*:ipad:*:*
cpe:2.3:a:air_transfer_project:air_transfer:1.0.14:*:*:*:*:ipad:*:*

Information

Published : 2022-06-27 07:15

Updated : 2022-07-06 12:48


NVD link : CVE-2017-20100

Mitre link : CVE-2017-20100


JSON object : View

CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Advertisement

dedicated server usa

Products Affected

air_transfer_project

  • air_transfer