Vulnerability Details CVE-2021-44829
Cross Site Scripting (XSS) vulnerability exists in index.html in AFI WebACMS through 2.1.0 via the the ID parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.028
EPSS Ranking 86.2%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 4.3
References
- http://packetstormsecurity.com/files/165684/WebACMS-2.1.0-Cross-Site-Scripting.html
- http://seclists.org/fulldisclosure/2022/Jan/41
- https://blog.to.com/advisory-webacms-2-1-0-cross-site-scripting/
- https://www.afi-solutions.com/
- https://www.to.com
- http://packetstormsecurity.com/files/165684/WebACMS-2.1.0-Cross-Site-Scripting.html
- http://seclists.org/fulldisclosure/2022/Jan/41
- https://blog.to.com/advisory-webacms-2-1-0-cross-site-scripting/
- https://www.afi-solutions.com/
- https://www.to.com
Products affected by CVE-2021-44829
-
cpe:2.3:a:afi-solutions:webacms:2.1.0