mirror of
https://github.com/0xMarcio/cve.git
synced 2025-11-28 18:48:49 +00:00
760 B
760 B
CVE-2021-3539
&color=brightgreen)
Description
EspoCRM 6.1.6 and prior suffers from a persistent (type II) cross-site scripting (XSS) vulnerability in processing user-supplied avatar images. This issue was fixed in version 6.1.7 of the product.
POC
Reference
Github
No PoCs found on GitHub currently.