Vulnerabilities
Vulnerable Software
Hundredplus:  >> 101eip  Security Vulnerabilities
Add announcement function in the 101EIP system does not filter special characters, which allows authenticated users to inject JavaScript and perform a stored XSS attack.
CVSS Score
5.4
EPSS Score
0.001
Published
2021-05-28
Add event in calendar function in the 101EIP system does not filter special characters in specific fields, which allows remote authenticated users to inject JavaScript and perform a stored XSS attack.
CVSS Score
5.4
EPSS Score
0.001
Published
2021-05-28


Contact Us

Shodan ® - All rights reserved