CVE-2021-39404

MaianAffiliate v1.0 allows an authenticated administrative user to save an XSS to the database...

CVE-2021-39404

MaianAffiliate v1.0 contains a vulnerability where an authenticated administrative user can store (save) a stored cross‑site scripting (XSS) payload in the database. This is documented across multiple sources (NVD entry CVE-2021-39404 and related entries) and is characterized as a design/logic fl...