Lucene search
+L

CVE-2021-28901

🗓️ 15 Sep 2021 17:50:05Reported by mitreType 
cve
 cve
🔗 web.nvd.nist.gov👁 40 Views🌐 WEB

Multiple XSS vulnerabilities in SITA Software Azur CMS 1.2.3.1 and earlier

Related
Detection
Refs
Paths
ReporterTitlePublishedViews
Family
ATTACKERKB
CVE-2021-28901
15 Sep 202118:15
attackerkb
Circl
CVE-2021-28901
15 Sep 202122:22
circl
CNNVD
SITA Software Azur CMS 跨站脚本漏洞
15 Sep 202100:00
cnnvd
Cvelist
CVE-2021-28901
15 Sep 202117:50
cvelist
EUVD
EUVD-2021-15554
7 Oct 202500:30
euvd
NVD
CVE-2021-28901
15 Sep 202118:15
nvd
OSV
CVE-2021-28901
15 Sep 202118:15
osv
Prion
Cross site scripting
15 Sep 202118:15
prion
RedhatCVE
CVE-2021-28901
9 Jan 202611:25
redhatcve
NVD
Node
sitasoftwareazurcmsRange1.2.3.12
ParameterPositionPathDescriptionCWE
NOM_CLIrequest bodyeshop/products/json/aouCustomerAdresseXSS via unsanitized input in customer address fields (NOM_CLI, ADRESSE, ADRESSE2, LOCALITE)CWE-79
ADRESSErequest bodyeshop/products/json/aouCustomerAdresseXSS via unsanitized input in customer address fields (NOM_CLI, ADRESSE, ADRESSE2, LOCALITE)CWE-79
ADRESSE2request bodyeshop/products/json/aouCustomerAdresseXSS via unsanitized input in customer address fields (NOM_CLI, ADRESSE, ADRESSE2, LOCALITE)CWE-79
LOCALITErequest bodyeshop/products/json/aouCustomerAdresseXSS via unsanitized input in customer address fields (NOM_CLI, ADRESSE, ADRESSE2, LOCALITE)CWE-79
nom_listerequest bodyeshop/products/json/addCustomerFavoriteXSS via unsanitized input in add to favorites parameter (nom_liste)CWE-79

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Jun 2026 03:47Current
5.4Medium risk
Vulners AI Score5.4
CVSS 23.5
CVSS 3.15.4
EPSS0.00808
40