Spotweb Security Vulnerabilities and Issues — Spotweb CVE List

Lucene search

Spotweb ProjectSpotweb

2 matches found

CVE•added 2022/03/28 1:15 p.m.•81 views

CVE-2021-43725

There is a Cross Site Scripting (XSS) vulnerability in SpotPage_login.php of Spotweb 1.5.1 and below, which allows remote attackers to inject arbitrary web script or HTML via the data[performredirect] parameter.

6.1CVSS5.9AI score0.01081EPSS

CVE•added 2022/01/21 7:15 p.m.•33 views

CVE-2021-33966

Cross site scripting (XSS) vulnerability in spotweb 1.4.9, allows authenticated attackers to execute arbitrary code via crafted GET request to the login page.

5.4CVSS5.4AI score0.00314EPSS