Description
An issue was discovered in ProjectSend before r1053. XSS exists in the "Name" field on the My Account page.
Remediation
References
Related Vulnerabilities
WordPress Plugin N-Media Website Contact Form with File Upload Arbitrary File Upload (2.1)
WebLogic CVE-2020-14859 Vulnerability (CVE-2020-14859)
PrestaShop Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2013-6358)
WordPress Plugin Affiliates Manager Cross-Site Scripting (2.8.9)
Oracle Application Server CVE-2008-2593 Vulnerability (CVE-2008-2593)