CVE-2017-9783
06.03.2018, 16:29
Cross-site scripting (XSS) vulnerability in ProjectSend (formerly cFTP) before commit 6c3710430be26feb5371cb0377e5355d6f9a27ca allows remote attackers to inject arbitrary web script or HTML via the Description field in a Site name updated.
Vendor | Product | Version |
---|---|---|
projectsend | projectsend | 𝑥 ≤ r754 |
𝑥
= Vulnerable software versions
References