Unrated severityNVD Advisory· Published Aug 4, 2021· Updated Aug 4, 2024
CVE-2021-38113
CVE-2021-38113
Description
In addBouquet in js/bqe.js in OpenWebif (aka e2openplugin-OpenWebif) through 1.4.7, inserting JavaScript into the Add Bouquet feature of the Bouquet Editor (i.e., bouqueteditor/api/addbouquet?name=) leads to Stored XSS.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- OpenWebif/OpenWebifdescription
- Range: <=1.4.7
- Range: <=1.4.7
Patches
Vulnerability mechanics
References
1- github.com/E2OpenPlugins/e2openplugin-OpenWebif/issues/1387mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.