CVE-2018-14527

2018-07-23T08:29:00
ID CVE-2018-14527
Type cve
Reporter cve@mitre.org
Modified 2018-09-18T18:36:00

Description

Feedback.asp in Xiao5uCompany 1.7 has XSS because the XSS protection mechanism in Safe.asp is insufficient (for example, it considers SCRIPT and IMG elements, but does not consider VIDEO elements).