3 matches found
CVE-2021-25277
creationtimestamp| type| source ---|---|--- 2021-03-19 19:33:25+00:00| seen| https://t.me/cibsecurity/25183...
CVE-2021-25277
FTAPI 4.0 - 4.10 allows XSS via a crafted filename to the alternative text hover box in the file submission component...
CVE-2021-25277
CVE-2021-25277 affects FTAPI versions 4.0–4.10. The issue is a cross-site scripting (XSS) vulnerability triggered by a crafted filename that is processed in the file submission component’s alternative text hover box. The root cause is improper handling of filename input in the hover text renderin...