Folder Lock Cross-Site Scripting Vulnerability

2021-10-2800:00:00

China National Vulnerability Database

www.cnvd.org.cn

folder lock

data security

newsoftwares

inc

cross-site scripting

vulnerability

create folder

data validation

javascript code

client side

cnvd

EPSS

0.001

Percentile

24.8%

JSON

Folder Lock is a perfect data security application from NewSoftwares, Inc. Folder Lock is vulnerable to a cross-site scripting vulnerability in v3.4.5, which stems from the " Create Folder" function under the “Create” module lacks a data validation filter for user-supplied data and output. An attacker could use this vulnerability to execute JavaScript code on the client side.

EPSS

0.001

Percentile

24.8%

JSON

Related for CNVD-2021-103378