QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2021-33853

Back to search

CVE-2021-33853

Published: Mar 16, 2022

Modified: Aug 4, 2024

PUBLISHED

Description

A Cross-Site Scripting (XSS) attack can cause arbitrary code (javascript) to run in a user’s browser while the browser is connected to a trusted website. As the vehicle for the attack, the application targets the users and not the application itself. Additionally, the XSS payload is executed when the user attempts to access any page of the CRM.

VendorProductVersions

n/a

X2CRM

affected
8

Weaknesses (CWE)

CWE-79

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now