Name of the Vulnerable Software and Affected Versions Serv-U File Server (affected versions not specified)

Description The issue is related to insufficient validation of client-supplied parameters used in HTM scripts, allowing a remote attacker to execute arbitrary JavaScript code in the user's browser, substitute content, or redirect traffic to an arbitrary resource if the user clicks on a specially crafted link.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.