2 matches found
CVE-2021-38560
Ivanti Service Manager 2021.1 allows reflected XSS via the appName parameter associated with ConfigDB calls, such as in RelocateAttachments.aspx...
CVE-2021-38560
Ivanti Service Manager 2021.1 is affected by a reflected XSS vulnerability in the appName parameter used with ConfigDB calls (notably RelocateAttachments.aspx). The issue arises from unvalidated input reflected back to the user, enabling script execution in certain contexts. The CVE-2021-38560 en...