Medium severity4.6NVD Advisory· Published May 7, 2021· Updated Jun 17, 2026
CVE-2021-30172
CVE-2021-30172
Description
Special characters of picture preview page in the Quan-Fang-Wei-Tong-Xun system are not filtered in users’ input, which allow remote authenticated attackers can inject malicious JavaScript and carry out Reflected XSS (Cross-site scripting) attacks, additionally access and manipulate customer’s information.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Jun-He Technology Ltd./Quan-Fang-Wei-Tong-Xun systemv5Range: 2007.1901
Patches
Vulnerability mechanics
References
1- www.twcert.org.tw/tw/cp-132-4711-04469-1.htmlnvdThird Party Advisory
News mentions
0No linked articles in our index yet.