← Back to CVE List
CVE-2021-41567
The new add subject parameter of Tad Uploader view book list function fails to filter special characters. Unauthenticated attackers can remotely inject JavaScript syntax and execute stored XSS attacks.
> MITRE Terms of Use apply – see LICENSE‑MITRE.txt