Security Advisory

CVE-2021-30172

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-05-07 09:30:25

Last updated 2024-09-17 00:51:32

Assigner twcert

State PUBLISHED

Description

Special characters of picture preview page in the Quan-Fang-Wei-Tong-Xun system are not filtered in users’ input, which allow remote authenticated attackers can inject malicious JavaScript and carry out Reflected XSS (Cross-site scripting) attacks, additionally access and manipulate customer’s information.

← Browse all CVEs View on cve.org ↗