Medium severity6.1NVD Advisory· Published Jun 7, 2021· Updated Jun 17, 2026
CVE-2021-33904
CVE-2021-33904
Description
In Accela Civic Platform through 21.1, the security/hostSignon.do parameter servProvCode is vulnerable to XSS. NOTE: The vendor states "there are configurable security flags and we are unable to reproduce them with the available information.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Accela/Civic Platformdescription
- Range: <=21.1
Patches
Vulnerability mechanics
References
2- packetstormsecurity.com/files/163093/Accela-Civic-Platorm-21.1-Cross-Site-Scripting.htmlnvdExploitThird Party AdvisoryVDB Entry
- gist.github.com/0xx7/3d934939d7122fe23db11bc48eda9d21nvdThird Party Advisory
News mentions
0No linked articles in our index yet.