VYPR
Medium severity6.1NVD Advisory· Published Dec 27, 2017· Updated Jun 17, 2026

CVE-2017-17911

CVE-2017-17911

Description

packages/core/contact.php in Archon 3.21 rev-1 has XSS in the referer parameter in an index.php?p=core/contact request, aka Open Bug Bounty ID OBB-278503.

Affected products

3
  • Range: = 3.21 rev-1
  • Archon/Archon2 versions
    cpe:2.3:a:archon:archon:3.21:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:archon:archon:3.21:*:*:*:*:*:*:*
    • (no CPE)range: = 3.21 rev-1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.