2 matches found
CVE-2021-43829
PatrOwl is a free and open-source solution for orchestrating Security Operations. In versions prior to 1.7.7 PatrowlManager unrestrictly handle upload files in the findings import feature. This vulnerability is capable of uploading dangerous type of file to server leading to XSS attacks and...
CVE-2021-43829
PatrOwl/PatrowlManager is affected by CVE-2021-43829 (unrestricted file upload in the findings import feature). The issue enables uploading dangerous file types to the server, leading to XSS and potential code-injection vectors. Affected version range includes prior to 1.7.7; mitigation is to upg...