CVE-2017-5246

creationtimestamp| type| source ---|---|--- 2017-10-11 16:08:44+00:00| seen| https://t.me/webpwn/162...

CVE-2017-5246

Biscom Secure File Transfer is vulnerable to AngularJS expression injection in the Display Name field. An authenticated user can supply a valid AngularJS expression ({{ … }}) which will be evaluated by other authenticated users viewing the attacker’s display name. Affected versions are 5.0.0000 t...