Search Results | AttackerKB

Show filters

Clear All

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

1 Total Results

Displaying 1-1 of 1

Attacker Value

Unknown

CVE-2017-9306

Disclosure Date: May 31, 2017 (last updated November 26, 2024)

inc/SP/Html/Html.class.php in sysPass 2.1.9 allows remote attackers to bypass the XSS filter, as demonstrated by use of an "<svg/onload=" substring instead of an "<svg onload=" substring.

1 Total Results

Displaying 1-1 of 1

Unknown

CVE-2017-9306

Quick Cookie Notification