CVE-2021-38560

Published
View on NVD ↗
CVSS v3
6.1
MEDIUM
CVSS v2
4.3
MEDIUM
Affected
1
PROJECT

Description

Ivanti Service Manager 2021.1 allows reflected XSS via the appName parameter associated with ConfigDB calls, such as in RelocateAttachments.aspx.

os909/iVANTI-CVE-2021-38560
os909/iVANTI-CVE-2021-38560
GitHubGitHub
1