3 matches found
CVE-2021-37402
OX App Suite before 7.10.3-rev32 and 7.10.4 before 7.10.4-rev18 allows XSS via binary data that is mishandled when the legacy dataretrieval endpoint has been enabled...
CVE-2021-37402
OX App Suite before 7.10.3-rev32 and 7.10.4 before 7.10.4-rev18 allows XSS via binary data that is mishandled when the legacy dataretrieval endpoint has been enabled...
CVE-2021-37402
OX App Suite is affected: versions before 7.10.3-rev32 and before 7.10.4-rev18 (i.e., 7.10.4-rev18 and earlier) are vulnerable. The issue is an XSS caused by mishandling binary data when the legacy dataretrieval endpoint is enabled, enabling an attacker-controlled payload to be reflected in user ...