cvedb.io
CVE-2021-4309
LOW · CVSS 3.5
EPSS exploitation probability: 0%
Published 2023-01-08T17:15:17.947 · Last modified 2026-06-17T04:19:28.680

Summary

A vulnerability, which was classified as problematic, has been found in 01-Scripts 01ACP. This issue affects some unknown processing. The manipulation of the argument $_SERVER['SCRIPT_NAME'] leads to cross site scripting. The attack may be initiated remotely. The identifier of the patch is a16eb7da46ed22bc61067c212635394f2571d3c4. It is recommended to apply a patch to fix this issue. The identifier VDB-217649 was assigned to this vulnerability.

Affected products

01-scripts — 01acp

Does this affect you?

Add your gear to cvedb and we'll alert you only when 01-scripts ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.