VYPR
Medium severity5.4NVD Advisory· Published Feb 24, 2021· Updated Jun 17, 2026

CVE-2021-3355

CVE-2021-3355

Description

A stored-self XSS exists in LightCMS v1.3.4, allowing an attacker to execute HTML or JavaScript code in a vulnerable Title field to /admin/SensitiveWords.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.