5 matches found
myfactory FMS - Cross-Site Scripting
myfactory.FMS before 7.1-912 allows cross-site scripting via the UID parameter. id: CVE-2021-42565 info: name: myfactory FMS - Cross-Site Scripting author: madrobot,daffainfo severity: medium description: | myfactory.FMS before 7.1-912 allows cross-site scripting via the UID parameter. impact: |...
myfactory FMS 7.1-911 - 'Multiple' Reflected Cross-Site Scripting (XSS)
Exploit Title: myfactory FMS 7.1-911 - 'Multiple' Reflected Cross-Site Scripting XSS Exploit Author: RedTeam Pentesting GmbH Vendor Homepage: https://www.myfactory.com/ Version: Enfold input NAME="txtUID" VALU...
CVE-2021-42565
creationtimestamp| type| source ---|---|--- 2021-10-18 12:36:42+00:00| seen| https://t.me/cibsecurity/30673...
CVE-2021-42565
myfactory.FMS before 7.1-912 allows XSS via the UID parameter...
CVE-2021-42565
Summary : CVE-2021-42565 affects myfactory FMS; versions up to 7.1-912 are vulnerable to Cross-Site Scripting via the UID parameter. The Nuclei/NVD entries corroborate the issue and describe it as a client-side script execution risk in login/UID handling. The connected documents specify the affec...