Medium severity5.4NVD Advisory· Published May 17, 2022· Updated Jun 17, 2026
CVE-2021-42943
CVE-2021-42943
Description
Stored cross-site scripting (XSS) in admin/usermanager.php over IPPlan v4.92b allows remote attackers to inject arbitrary web script or HTML via the userid parameter.
Affected products
2- IPPlan/IPPlandescription
- Range: = v4.92b
Patches
Vulnerability mechanics
References
1- devbrain.com.br/index.php/2022/05/16/cve-2021-42943/nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.