CVE

CVE-2021-25277

CVE-2021-25277

FTAPI 4.0 – 4.10 allows XSS via a crafted filename to the alternative text hover box in the file submission component.

Source: CVE-2021-25277

Exit mobile version