CVE-2021-35300 · Vexday

CVE-2021-35300

EPSS 0.9%

Text injection/Content Spoofing in 404 page in Zammad 1.0.x up to 4.0.0 could allow remote attackers to manipulate users into visiting the attackers' page.

Affected products

n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://zammad.com/en/advisories/zaa-2021-07