2 matches found
CVE-2021-42092
creationtimestamp| type| source ---|---|--- 2021-10-08 00:34:15+00:00| seen| https://t.me/cibsecurity/30219...
CVE-2021-42092
The CVE-2021-42092 issue affects Zammad prior to 4.1.1, where a Stored XSS can be triggered when attaching a file to a Ticket via an Article. The root cause is input validation/escaping during attachment handling that allows injected JavaScript to be stored and later executed in the context of th...