CVE-2017-5621 (zammad)

Posted on 2017년 3월 13일2017년 3월 15일 by admin

An issue was discovered in Zammad before 1.0.4, 1.1.x before 1.1.3, and 1.2.x before 1.2.1. XSS can be triggered via malicious HTML in a chat message or the content of a ticket article, when using either the REST API or the WebSocket API.

Source: CVE-2017-5621 (zammad)

답글 남기기 응답 취소