Swift File Transfer Mobile v1.1.2 was discovered to contain a cross-site scripting (XSS) vulnerability via the devicename parameter which allows attackers to execute arbitrary web scripts or HTML via a crafted payload entered as the device name itself.
References
Link | Resource |
---|---|
https://www.vulnerability-lab.com/get_content.php?id=2205 | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2021-10-22T19:19:53
Updated: 2021-10-22T19:19:53
Reserved: 2021-10-20T00:00:00
Link: CVE-2020-36502
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-10-22T20:15:11.730
Modified: 2021-10-28T20:33:16.410
Link: CVE-2020-36502
JSON object: View
Redhat Information
No data.
CWE