PT-2017-8594 · Usermin · Usermin
Toshinobu Honjo
·
Published
2017-04-12
·
Updated
2017-04-19
·
CVE-2016-4897
CVSS v3.1
6.1
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Usermin versions prior to 1.690
Description
The issue concerns multiple cross-site scripting (XSS) vulnerabilities found in specific components of the software, including (1) filter/save forward.cgi, (2) filter/save.cgi, and (3) /man/search.cgi.
Recommendations
For versions prior to 1.690, update to version 1.690 or later to resolve the issue.
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Usermin