Description MasaCMS 7.2.1 is affected by a path traversal vulnerability in /index.cfm/_api/asset/image/. Remediation References CVE-2021-42183 Related Vulnerabilities WordPress Plugin Contact Form 7 Captcha Cross-Site Request Forgery (0.0.8) WordPress Plugin Easy Google Map Cross-Site Scripting (1.1.4) WordPress Plugin Toolset Types-Custom Post Types, Custom Fields and Taxonomies Privilege Escalation (2.3.3) WordPress Plugin Easy Social Icons Cross-Site Scripting (3.1.2) EspoCRM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-14548) Severity High Classification CVE-2021-42183 CWE-22 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Tags Missing Update Known Vulnerabilities