CVE-2018-14527

Feedback.asp in Xiao5uCompany 1.7 has XSS because the XSS protection mechanism in Safe.asp is insufficient (for example, it considers SCRIPT and IMG elements, but does not consider VIDEO elements).
Configurations

Configuration 1

cpe:2.3:a:xiao5ucompany_project:xiao5ucompany:1.7:*:*:*:*:*:*:*

Information

Published : 2018-07-23 08:29

Updated : 2018-09-18 06:36


NVD link : CVE-2018-14527

Mitre link : CVE-2018-14527

Products Affected
No products.
CWE