Cross-site scripting (XSS) vulnerability in ZPanel 10.0.1 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the inFullname parameter in an UpdateAccountSettings action in the my_account module to zpanel/.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
zpanelcp zpanel |