Vulnerability Description
A vulnerability, which was classified as problematic, has been found in 01-Scripts 01ACP. This issue affects some unknown processing. The manipulation of the argument $_SERVER['SCRIPT_NAME'] leads to cross site scripting. The attack may be initiated remotely. The identifier of the patch is a16eb7da46ed22bc61067c212635394f2571d3c4. It is recommended to apply a patch to fix this issue. The identifier VDB-217649 was assigned to this vulnerability.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| 01-Scripts | 01Acp | < 2021-09-15 |
Related Weaknesses (CWE)
References
- https://github.com/01-Scripts/01ACP/commit/a16eb7da46ed22bc61067c212635394f2571dPatch
- https://vuldb.com/?ctiid.217649Third Party Advisory
- https://vuldb.com/?id.217649Third Party Advisory
- https://github.com/01-Scripts/01ACP/commit/a16eb7da46ed22bc61067c212635394f2571dPatch
- https://vuldb.com/?ctiid.217649Third Party Advisory
- https://vuldb.com/?id.217649Third Party Advisory
FAQ
What is CVE-2021-4309?
CVE-2021-4309 is a vulnerability with a CVSS score of 3.5 (LOW). A vulnerability, which was classified as problematic, has been found in 01-Scripts 01ACP. This issue affects some unknown processing. The manipulation of the argument $_SERVER['SCRIPT_NAME'] leads to ...
How severe is CVE-2021-4309?
CVE-2021-4309 has been rated LOW with a CVSS base score of 3.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-4309?
Check the references section above for vendor advisories and patch information. Affected products include: 01-Scripts 01Acp.