Cross-site scripting (XSS) vulnerability in ProjectSend (formerly cFTP) r561 allows remote attackers to inject arbitrary web script or HTML via the Description field in a file upload. NOTE: this issue was originally incorrectly mapped to CVE-2014-1155; see CVE-2014-1155 for more information.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2015-01-08T19:00:00
Updated: 2017-09-07T15:57:01
Reserved: 2015-01-08T00:00:00
Link: CVE-2014-9580
JSON object: View
NVD Information
Status : Modified
Published: 2015-01-08T19:59:00.057
Modified: 2017-09-08T01:29:36.497
Link: CVE-2014-9580
JSON object: View
Redhat Information
No data.
CWE