CVE-2021-28417

Name of the Vulnerable Software and Affected Versions: Seo Panel version 4.8.0

Description: A cross-site scripting (XSS) issue allows remote attackers to inject JavaScript via the "archive.php" endpoint and the search name parameter.

Recommendations: For Seo Panel version 4.8.0, consider disabling the archive.php endpoint or restricting access to it until a patch is available. Avoid using the search name parameter in the affected endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.