5.24.8

DATE	CVE	VULNERABILITY TITLE	RISK
2021-03-02	CVE-2021-27888	Cross-site Scripting vulnerability in Zend Zendto ZendTo before 6.06-4 Beta allows XSS during the display of a drop-off in which a filename has unexpected characters. network low complexity zend CWE-79	6.1

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.