CVE-2021-41791
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2021-41791
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-41791.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2021-41791
- Published
- 2021-10-21T09:15:08Z
- Modified
- 2025-01-08T08:02:10.940494Z
- Severity
-
- 5.4 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
- Summary
- [none]
- Details
-
An issue was discovered in Hyland org.alfresco:share through 7.0.0.2 and org.alfresco:community-share through 7.0. An evasion of the XSS filter for HTML input validation in the Alfresco Share User Interface leads to stored XSS that could be exploited by an attacker (given that he has privileges on the content collaboration features).
- References
Affected packages
Git / github.com/alfresco/acs-packaging
Affected ranges
- Type
- GIT
- Repo
- https://github.com/alfresco/acs-packaging
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affected
- Type
- GIT
- Repo
- https://github.com/alfresco/alfresco-community-share
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affected
- Type
- GIT
- Repo
- https://github.com/alfresco/share
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affectedLast affectedLast affected
Affected versions
5.*
5.1.0-CLOUD43-SNAPSHOT
6.*
6.2.2.4
acs-packaging-6.*
acs-packaging-6.0.0
acs-packaging-6.0.0-EA1
acs-packaging-6.0.0-RC1
acs-packaging-6.0.0-RC2
acs-packaging-6.0.0-RC3
acs-packaging-6.0.0-RC4
acs-packaging-6.0.0-RC5
acs-packaging-6.0.0-RC6
acs-packaging-6.0.0-testRC3
acs-packaging-6.0.0-testRc4
acs-packaging-6.0.0-testRc6
acs-packaging-6.0.0-testRc7
acs-packaging-6.0.1
acs-packaging-6.0.1.1
acs-packaging-6.0.1.1-RC1
acs-packaging-6.0.1.2
acs-packaging-6.1.0-A1
acs-packaging-6.1.0-A2
acs-packaging-6.1.0-EA1
acs-packaging-6.1.0-EA2
acs-packaging-6.1.0-EA3
acs-packaging-6.1.0-RC2
acs-packaging-6.1.0-test
acs-packaging-6.1.1
acs-packaging-6.1.1-RC1
acs-packaging-6.1.1-RC2
acs-packaging-6.1.1-RC3
acs-packaging-6.1.1.1
acs-packaging-6.1.1.2
acs-packaging-6.2.0-A1
acs-packaging-6.2.0-A2
acs-packaging-6.2.0-A3
acs-packaging-6.2.0-A4
acs-packaging-6.2.0-A5
acs-packaging-6.2.0-A6
acs-packaging-6.2.0-A7
acs-packaging-6.2.0-A8
acs-packaging-6.2.0-RC1
acs-packaging-6.2.0-RC2
acs-packaging-6.2.0-RC3
acs-packaging-6.2.1-A1
acs-packaging-6.2.1-A2
acs-packaging-6.2.1-A3
acs-packaging-6.2.1-A4
acs-packaging-6.2.1-RC1
acs-packaging-6.2.1-RC2
acs-packaging-6.2.1-RC3
acs-packaging-6.2.1-RC4
acs-packaging-6.2.1-RC5
acs-packaging-6.2.1-RC6
acs-packaging-6.2.2
acs-packaging-6.2.2-A1
acs-packaging-6.2.2-A2
acs-packaging-6.2.2-RC1
acs-packaging-6.2.2.1
acs-packaging-6.2.2.2
acs-packaging-6.2.2.3
acs-packaging-6.3.0-A1
acs-packaging-6.3.0-A10
acs-packaging-6.3.0-A11
acs-packaging-6.3.0-A3
acs-packaging-6.3.0-A4
acs-packaging-6.3.0-A5
acs-packaging-6.3.0-A6
acs-packaging-6.3.0-A7
acs-packaging-6.3.0-A8
acs-packaging-6.3.0-A9
acs-packaging-7.*
acs-packaging-7.0.0-A1
acs-packaging-7.0.0-A2
acs-packaging-7.0.0-A3
acs-packaging-7.0.0-M1
alfresco-share-parent-6.*
alfresco-share-parent-6.0
alfresco-share-parent-6.0.0-rc1
alfresco-share-parent-6.0.0-rc2
alfresco-share-parent-6.0.0-rc3
alfresco-share-parent-6.0.0-rc4
alfresco-share-parent-6.0.0-rc5
alfresco-share-parent-6.0.0-rc6
alfresco-share-parent-6.0.1
alfresco-share-parent-6.0.1-RC2
alfresco-share-parent-6.0.1.1
alfresco-share-parent-6.0.1.2
alfresco-share-parent-6.0.2-A1
alfresco-share-parent-6.0.2-RC1
alfresco-share-parent-6.0.2-RC2
alfresco-share-parent-6.0.a
alfresco-share-parent-6.0.b
alfresco-share-parent-6.0.c
alfresco-share-parent-6.1.0-A1
alfresco-share-parent-6.1.0-A4
alfresco-share-parent-6.1.0-A5
alfresco-share-parent-6.1.0-RC1
alfresco-share-parent-6.1.0-RC2
alfresco-share-parent-6.1.0-RC3
alfresco-share-parent-6.1.1
alfresco-share-parent-6.1.1-RC1
alfresco-share-parent-6.1.1-RC2
alfresco-share-parent-6.1.1.1
alfresco-share-parent-6.1.1.2
alfresco-share-parent-6.2.1-A1
alfresco-share-parent-6.2.1-A2
alfresco-share-parent-6.2.1-A3
alfresco-share-parent-6.2.1-A4
alfresco-share-parent-6.2.2
alfresco-share-parent-6.2.2-RC1
alfresco-share-parent-6.2.2-RC2
alfresco-share-parent-6.2.2-RC3
alfresco-share-parent-6.2.2.1
alfresco-share-parent-6.2.2.2
alfresco-share-parent-6.2.2.3
alfresco-share-parent-6.2.2.4
alfresco-share-parent-7.*
alfresco-share-parent-7.0.0-A1
alfresco-share-parent-7.0.0-A10
alfresco-share-parent-7.0.0-A11
alfresco-share-parent-7.0.0-A12
alfresco-share-parent-7.0.0-A13
alfresco-share-parent-7.0.0-A14
alfresco-share-parent-7.0.0-A15
alfresco-share-parent-7.0.0-A16
alfresco-share-parent-7.0.0-A17
alfresco-share-parent-7.0.0-A18
alfresco-share-parent-7.0.0-A19
alfresco-share-parent-7.0.0-A2
alfresco-share-parent-7.0.0-A20
alfresco-share-parent-7.0.0-A4
alfresco-share-parent-7.0.0-A5
alfresco-share-parent-7.0.0-A6
alfresco-share-parent-7.0.0-A7
alfresco-share-parent-7.0.0-A8
alfresco-share-parent-7.0.0-M1
alfresco-share-parent-7.0.0-M2
alfresco-share-parent-7.0.0-M3
alfresco-share-parent-7.0.0.1
alfresco-share-parent-7.0.0.2