Vulnerabilities > Wems

DATE CVE VULNERABILITY TITLE RISK
2021-04-28 CVE-2020-21993 Cross-site Scripting vulnerability in Wems Enterprise Manager
In WEMS Limited Enterprise Manager 2.58, input passed to the GET parameter 'email' is not properly sanitized before being returned to the user.
network
low complexity
wems CWE-79
6.1