CrushFTP Server Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2017-14036 - Vulnerability Database
CrushFTP Server Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2017-14036
Medium
Reference:
CVE-2017-14036
Title:
CrushFTP Server Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Overview:
CrushFTP before 7.8.0 and 8.x before 8.2.0 has XSS.