Vulnerabilities > Yclas

DATE CVE VULNERABILITY TITLE RISK
2021-08-18 CVE-2021-38710 Cross-site Scripting vulnerability in Yclas 4.3.0
Static (Persistent) XSS Vulnerability exists in version 4.3.0 of Yclas when using the install/view/form.php script.
network
low complexity
yclas CWE-79
6.1