Arbitrary Code Injection Vulnerability in MaxButtons and MaxButtons Pro

Arbitrary Code Injection Vulnerability in MaxButtons and MaxButtons Pro

CVE-2017-2169 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Cross-site scripting vulnerability in MaxButtons prior to version 6.19 and MaxButtons Pro prior to version 6.19 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Learn more about our Web App Pen Testing.