Stored XSS vulnerability via IMG element at "Filename" of Filemanager in Tine 2.0 Community Edition before 2017.08.4 allows an authenticated user to inject JavaScript, which is mishandled during rendering by the application administrator and other users.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2017-09-29T07:00:00

Updated: 2024-08-05T19:42:22.230Z

Reserved: 2017-09-29T00:00:00

Link: CVE-2017-14921

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2017-09-30T01:29:01.913

Modified: 2024-11-21T03:13:45.793

Link: CVE-2017-14921

cve-icon Redhat

No data.