CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-3010

There are multiple persistent cross-site scripting (XSS) vulnerabilities in the web interface of OpenText Content Server Version 20.3. The application allows a remote attacker to introduce arbitrary JavaScript by crafting malicious form values that are later not sanitized.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 31.8%

CVSS Severity

CVSS v3 Score 5.4

CVSS v2 Score 3.5

References

https://www.exploit-db.com/exploits/49578
https://www.opentext.com/products-and-solutions/products/enterprise-content-management/content-management
https://www.exploit-db.com/exploits/49578
https://www.opentext.com/products-and-solutions/products/enterprise-content-management/content-management

Products affected by CVE-2021-3010

Opentext » Content Server » Version: 20.3

cpe:2.3:a:opentext:content_server:20.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-3010

Products

Pricing

Contact Us