Medium severity5.4NVD Advisory· Published Jul 14, 2021· Updated Jun 17, 2026
CVE-2021-33212
CVE-2021-33212
Description
A Cross-site scripting (XSS) vulnerability in the "View in Browser" feature in Elements-IT HTTP Commander 5.3.3 allows remote authenticated users to inject arbitrary web script or HTML via a crafted SVG image.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Elements-IT/HTTP Commanderdescription
- Range: <=5.3.3
Patches
Vulnerability mechanics
References
2- www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2021-020.txtnvdExploitThird Party Advisory
- www.syss.de/pentest-blog/nvdThird Party Advisory
News mentions
0No linked articles in our index yet.