Security Advisory

CVE-2017-5542

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2017-01-20 08:39:00

Last updated 2024-08-05 15:04:15

Assigner mitre

State PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in template/usererror.missing_extension.php in Symphony CMS before 2.6.10 allows remote attackers to inject arbitrary web script or HTML via the existing-folder parameter.

← Browse all CVEs View on cve.org ↗