Medium severity5.4NVD Advisory· Published Jan 21, 2022· Updated Jun 17, 2026
CVE-2021-33966
CVE-2021-33966
Description
Cross site scripting (XSS) vulnerability in spotweb 1.4.9, allows authenticated attackers to execute arbitrary code via crafted GET request to the login page.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- spotweb/spotwebdescription
Patches
Vulnerability mechanics
References
1- packetstormsecurity.com/files/162731/Spotweb-Develop-1.4.9-Cross-Site-Scripting.htmlnvdExploitThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.