CVE-2021-3318

Publication date

2021-01-27 17:13:04

Family

mitre

State

PUBLISHED

Description

attach/ajax.php in DzzOffice through 2.02.1 allows XSS via the editorid parameter.