Unrated severityNVD Advisory· Published Mar 29, 2021· Updated Aug 3, 2024
CVE-2021-29267
CVE-2021-29267
Description
Sherlock SherlockIM through 2021-03-29 allows Cross Site Scripting (XSS) by leveraging the api/Files/Attachment URI to attack help-desk staff via the chatbot feature.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Sherlock/SherlockIMdescription
- Range: <=2021-03-29
Patches
Vulnerability mechanics
References
1- sherlockim.aemitrex_refsource_MISC
News mentions
0No linked articles in our index yet.