ZendTo prior to 6.06-4 Beta allows XSS during the display of a drop-off in which a filename has unexpected characters.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
zend zendto |
||
zend zendto 6.06-1 |
||
zend zendto 6.06-2 |
||
zend zendto 6.06-3 |