2 matches found
CVE-2017-14036
CrushFTP before 7.8.0 and 8.x before 8.2.0 has XSS...
CVE-2017-14036
CVE-2017-14036 corresponds to a Cross-Site Scripting (XSS) vulnerability in CrushFTP prior to 7.8.0 and in 8.x prior to 8.2.0. Multiple connected records corroborate the issue in CrushFTP, describing a vulnerability that allows an attacker to inject malicious script or HTML when a user views data...