Medium severity6.1NVD Advisory· Published May 31, 2017· Updated Jun 17, 2026
CVE-2017-9306
CVE-2017-9306
Description
inc/SP/Html/Html.class.php in sysPass 2.1.9 allows remote attackers to bypass the XSS filter, as demonstrated by use of an "<svg/onload=" substring instead of an "<svg onload=" substring.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
1- www.cdxy.menvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.