Latest Vulnerabilities and Exploits



CVE ID:

CVE-2021-3395

Details:

A cross-site scripting (XSS) vulnerability in Pryaniki 6.44.3 allows remote authenticated users to upload an arbitrary file. The JavaScript code will execute when someone visits the attachment.

References:

:https://github.com/jet-pentest/-2021-3395/
:https://pryaniky.com/en/home/

ZeroDayLab Assigned Tags:

AUTHENTICATED REMOTE
REMOTE
CROSS SITE SCRIPTING - What is Cross Site Scripting?