| ID | CVE-2021-38709 | ||||||
| Sažetak | In ocProducts Composr CMS before 10.0.38, an attacker can inject JavaScript via the staff_messaging messaging system for XSS. | ||||||
| Reference | |||||||
| CVSS |
|
||||||
| Pristup |
|
||||||
| Impact |
|
||||||
| CVSS vektor | AV:N/AC:M/Au:N/C:N/I:P/A:N | ||||||
| Zadnje važnije ažuriranje | 24-08-2021 - 12:43 | ||||||
| Objavljeno | 16-08-2021 - 03:15 |
