Security Advisory

CVE-2021-43810

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-12-07 22:00:12

Last updated 2024-08-04 04:03:08

Assigner GitHub_M

State PUBLISHED

Description

Admidio is a free open source user management system for websites of organizations and groups. A cross-site scripting vulnerability is present in Admidio prior to version 4.0.12. The Reflected XSS vulnerability occurs because redirect.php does not properly validate the value of the url parameter. Through this vulnerability, an attacker is capable to execute malicious scripts. This issue is patched in version 4.0.12.

← Browse all CVEs View on cve.org ↗