The Web Client in Cerberus FTP Server Enterprise before 10.0.19 and 11.x before 11.0.4 allows XSS via an SVG document.
References
Link | Resource |
---|---|
https://www.cerberusftp.com/products/releasenotes/ | Release Notes Vendor Advisory |
https://www.cerberusftp.com/xss-vulnerability-when-previewing-svg-content/ | Mitigation Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2021-06-10T11:39:28
Updated: 2021-06-10T11:39:28
Reserved: 2021-06-10T00:00:00
Link: CVE-2019-25046
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-06-10T12:15:07.783
Modified: 2021-06-17T19:16:30.497
Link: CVE-2019-25046
JSON object: View
Redhat Information
No data.
CWE