CVE-2017-9783

Cross-site scripting (XSS) vulnerability in ProjectSend (formerly cFTP) before commit 6c3710430be26feb5371cb0377e5355d6f9a27ca allows remote attackers to inject arbitrary web script or HTML via the Description field in a Site name updated.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:projectsend:projectsend:*:*:*:*:*:*:*:*

Information

Published : 2018-03-06 08:29

Updated : 2018-03-27 08:39


NVD link : CVE-2017-9783

Mitre link : CVE-2017-9783


JSON object : View

CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Advertisement

dedicated server usa

Products Affected

projectsend

  • projectsend