Vulnerabilities > Dzzoffice > Dzzoffice > 1.3.1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-01-27 | CVE-2021-3318 | Cross-site Scripting vulnerability in Dzzoffice attach/ajax.php in DzzOffice through 2.02.1 allows XSS via the editorid parameter. | 4.3 |