1.4.1

DATE	CVE	VULNERABILITY TITLE	RISK
2019-02-01	CVE-2018-16484	Cross-site Scripting vulnerability in M-Server Project M-Server A XSS vulnerability was found in module m-server <1.4.2 that allows malicious Javascript code or HTML to be executed, due to the lack of escaping for special characters in folder names. network low complexity m-server-project CWE-79	5.4

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.