CVE Published: 08/02/2022 |
CVE Updated: 03/08/2024 |
CVE Year: 2022 Source: jpcert |
Vendor: econosys system |
Product: php_mailform Status : PUBLISHED
CVE-2022-21805 Description
Reflected cross-site scripting vulnerability in the attached file name of php_mailform versions prior to Version 1.40 allows a remote unauthenticated attacker to inject an arbitrary script via unspecified vectors.