Medium severity6.1NVD Advisory· Published Mar 2, 2021· Updated Jun 17, 2026
CVE-2021-27888
CVE-2021-27888
Description
ZendTo before 6.06-4 Beta allows XSS during the display of a drop-off in which a filename has unexpected characters.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- ZendTo/ZendTodescription
Patches
Vulnerability mechanics
References
1- zend.to/changelog.phpnvdRelease NotesVendor Advisory
News mentions
0No linked articles in our index yet.