First published: Tue Jun 27 2023(Updated: )
A reflected cross-site scripting (XSS) vulnerability in the zero parameter of dzzoffice 2.02.1_SC_UTF8 allows attackers to execute arbitrary web scripts or HTML.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Dzzoffice Dzzoffice | =2.02.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-30203 is a reflected cross-site scripting (XSS) vulnerability in the zero parameter of dzzoffice 2.02.1_SC_UTF8.
CVE-2021-30203 allows attackers to execute arbitrary web scripts or HTML by exploiting the reflected XSS vulnerability in the zero parameter of dzzoffice 2.02.1_SC_UTF8.
CVE-2021-30203 has a severity value of 6.1, which is considered medium.
To fix CVE-2021-30203, it is recommended to upgrade to a patched version of dzzoffice 2.02.1_SC_UTF8 or apply any available security patches provided by the software vendor.
More information about CVE-2021-30203 can be found at the following reference: [link](https://github.com/zyx0814/dzzoffice/issues/183)