A Cross-site scripting (XSS) vulnerability in the "View in Browser" feature in Elements-IT HTTP Commander 5.3.3 allows remote authenticated users to inject arbitrary web script or HTML via a crafted SVG image.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2021-07-14T13:44:08
Updated: 2024-08-03T23:42:20.283Z
Reserved: 2021-05-19T00:00:00
Link: CVE-2021-33212
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2021-07-14T14:15:08.873
Modified: 2021-07-16T14:07:13.617
Link: CVE-2021-33212
Redhat
No data.