CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-3318

attach/ajax.php in DzzOffice through 2.02.1 allows XSS via the editorid parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 53.1%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

Products affected by CVE-2021-3318

Dzzoffice » Dzzoffice » Version: 1.3.1

cpe:2.3:a:dzzoffice:dzzoffice:1.3.1
Dzzoffice » Dzzoffice » Version: 2.0

cpe:2.3:a:dzzoffice:dzzoffice:2.0
Dzzoffice » Dzzoffice » Version: 2.01

cpe:2.3:a:dzzoffice:dzzoffice:2.01
Dzzoffice » Dzzoffice » Version: 2.02

cpe:2.3:a:dzzoffice:dzzoffice:2.02
Dzzoffice » Dzzoffice » Version: 2.02.1

cpe:2.3:a:dzzoffice:dzzoffice:2.02.1

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved