Vulnerabilities (CVE)

Filtered by vendor Cetrinity Subscribe
Filtered by product Firstclass
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2007-2976 1 Cetrinity 2 Firstclass, Server And Internet Services 2024-02-04 4.3 MEDIUM N/A
Centrinity FirstClass 8.3 and earlier, and Server and Internet Services 8.0 and earlier, do not properly handle a URL with a null ("%00") character, which allows remote attackers to conduct cross-site scripting (XSS) attacks. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.