Medium severity6.1NVD Advisory· Published Mar 28, 2022· Updated Jun 17, 2026
CVE-2021-43725
CVE-2021-43725
Description
There is a Cross Site Scripting (XSS) vulnerability in SpotPage_login.php of Spotweb 1.5.1 and below, which allows remote attackers to inject arbitrary web script or HTML via the data[performredirect] parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Spotweb/Spotwebdescription
Patches
Vulnerability mechanics
References
2- github.com/spotweb/spotweb/commit/2bfa001689aae96009688a193c64478647ba45a1nvdPatchThird Party Advisory
- github.com/spotweb/spotweb/issues/718nvdExploitIssue TrackingThird Party Advisory
News mentions
0No linked articles in our index yet.