Multiple cross-site scripting (XSS) vulnerabilities in pd-admin prior to 4.17 allow remote authenticated users to inject arbitrary web script or HTML via (1) the WebFTP Overview "Create new directory" field or (2) the body of an e-mail autoresponder message.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
pd-admin pd-admin |