CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Wfiltericf: Security Vulnerabilities

CVE-2021-3243

Wfilter ICF 5.0.117 contains a cross-site scripting (XSS) vulnerability. An attacker in the same LAN can craft a packet with a malicious User-Agent header to inject a payload in its logs, where an attacker can take over the system by through its plugin-running function.

CVSS Score

6.1

EPSS Score

0.002

Published

2021-04-15

Page 1

Vulnerabilities

Vulnerable Software

Wfiltericf: Security Vulnerabilities

Products

Pricing

Contact Us