CVE-2017-18177

Progress Sitefinity 9.1 has XSS via the Last name, First name, and About fields on the New User Creation Page. This is fixed in 10.1.
Configurations

Configuration 1 (hide)

cpe:2.3:a:progress:sitefinity:9.1:*:*:*:*:*:*:*

History

No history.

Information

Published : 2018-02-12 14:29

Updated : 2024-02-04 19:46


NVD link : CVE-2017-18177

Mitre link : CVE-2017-18177

CVE.ORG link : CVE-2017-18177


JSON object : View

Products Affected

progress

  • sitefinity
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')