Medium severity6.1NVD Advisory· Published Mar 19, 2021· Updated Jun 17, 2026
CVE-2021-25277
CVE-2021-25277
Description
FTAPI 4.0 - 4.10 allows XSS via a crafted filename to the alternative text hover box in the file submission component.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- FTAPI/FTAPIdescription
Patches
Vulnerability mechanics
References
2- github.com/rauschecker/CVEs/tree/main/CVE-2021-25277nvdExploitThird Party Advisory
- www.ftapi.com/release-notes/nvdRelease NotesVendor Advisory
News mentions
0No linked articles in our index yet.