Medium severity4.8NVD Advisory· Published Mar 19, 2021· Updated Jun 17, 2026
CVE-2021-25278
CVE-2021-25278
Description
FTAPI 4.0 through 4.10 allows XSS via an SVG document to the Background Image upload feature in the Submit Box Template Editor.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- FTAPI/FTAPIdescription
Patches
Vulnerability mechanics
References
2- github.com/rauschecker/CVEs/tree/main/CVE-2021-25278nvdThird Party Advisory
- www.ftapi.com/release-notes/nvdRelease NotesVendor Advisory
News mentions
0No linked articles in our index yet.