3 matches found
CVE-2021-42943
Stored cross-site scripting XSS in admin/usermanager.php over IPPlan v4.92b allows remote attackers to inject arbitrary web script or HTML via the userid parameter...
CVE-2021-42943
Stored cross-site scripting XSS in admin/usermanager.php over IPPlan v4.92b allows remote attackers to inject arbitrary web script or HTML via the userid parameter...
CVE-2021-42943
IPPlan 4.92b is affected by a stored XSS vulnerability in admin/usermanager.php, allowing an attacker to inject arbitrary script/HTML via the userid parameter. This is described across multiple sources (NVD/CNVD/CVELIST/CNNVD) referencing the same issue and version. No explicit exploit details, p...