Arbitrary Web Script Injection Vulnerability in UrBackup Server before 2.1.20

Arbitrary Web Script Injection Vulnerability in UrBackup Server before 2.1.20

CVE-2017-16950 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Cross - site scripting (XSS) vulnerability in UrBackup Server before 2.1.20 allows remote attackers to inject arbitrary web script or HTML via the action parameter.

Learn more about our Web App Pen Testing.