CVE-2021-45919

描述

Studio 42 elFinder through 2.1.31 allows XSS via an SVG document.

受影響套件(1)

• Packagist/studio-42/elfinderfrom 0, <= 2.1.31

CVSS 分數

參考連結(2)

• ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2021-45919
• WEBhttps://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/from-stored-xss-to-rce-using-beef-and-elfinder-cve-2021-45919