CVE-2021-35300

Moderate 4.3

Text injection/Content Spoofing in 404 page in Zammad 1.0.x up to 4.0.0 could allow remote attackers to manipulate users into visiting the attackers' page.

Published June 28, 2021.