CVE-2021-35303 in Zammad
Resumen
por MITRE • 2021-06-29
Cross Site Scripting (XSS) in Zammad 1.0.x up to 4.0.0 allows remote attackers to execute arbitrary web script or HTML via the User Avatar attribute.
If you want to get the best quality for vulnerability data then you always have to consider VulDB.