2 matches found
CVE-2021-39390
creationtimestamp| type| source ---|---|--- 2022-05-04 14:44:11+00:00| seen| https://t.me/cibsecurity/41806...
CVE-2021-39390
CVE-2021-39390 describes a Stored XSS in PartKeepr 1.4.0. The vulnerability arises in the edit module where multiple API endpoints accept a name parameter without proper sanitization/validation, allowing injection of JavaScript that can be executed in the client browser. Affected software: PartKe...