Sweepr

1 exploit Active since Mar 2022
CVE-2021-43725 WRITEUP MEDIUM WRITEUP
spotweb < 1.5.1 - Cross-Site Scripting via data[performredirect] Parameter
There is a Cross Site Scripting (XSS) vulnerability in SpotPage_login.php of Spotweb 1.5.1 and below, which allows remote attackers to inject arbitrary web script or HTML via the data[performredirect] parameter.
CVSS 6.1