← back
CVE-2021-38695

CVE-2021-38695

EPSS 0.8%
SoftVibe SARABAN for INFOMA 1.1 is vulnerable to stored cross-site scripting (XSS) that allows users to store scripts in certain fields (e.g. subject, description) of the document form.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://orangeo.tech/post/2021/12/24/First-CVEs.htmlhttps://play.google.com/store/apps/details?id=th.co.softvibe.saraban&hl=en&gl=UShttps://sawatdee.github.io/post/2021/12/24/First-CVEs.htmlhttp://www.infoma.net/index.php/saraban/