Security Advisory

CVE-2021-36803

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-08-04 22:20:43

Last updated 2024-09-16 17:23:36

Assigner rapid7

State PUBLISHED

Description

Akaunting version 2.1.12 and earlier suffers from a persistent (type II) cross-site scripting (XSS) vulnerability in processing user-supplied avatar images. This issue was fixed in version 2.1.13 of the product.

← Browse all CVEs View on cve.org ↗