CVE-2021-31721

CVE-2021-31721

EPSS 1.2%

Chevereto before 3.17.1 allows Cross Site Scripting (XSS) via an image title at the image upload stage.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://chevereto.com http://packetstormsecurity.com/files/164183/Cloudron-6.2-Cross-Site-Scripting.html https://www.exploit-db.com/exploits/49859