CVE-2016-9500

Summary

Accellion FTP server prior to version FTA_9_12_220 uses the Accusoft Prizm Content flash component, which contains multiple parameters (customTabCategoryName, customButton1Image) that are vulnerable to cross-site scripting.

Affected Software

VendorProductVersion RangeStatus
AccellionFTP ServerFTA_9_12_220 < FTA_9_12_220affected

Weaknesses

  • CWE-80: CWE-80

ADP Enrichment

CVE Program Container

Additional References

References