← Back

CVE-2017-7276

nvd nist
Published: Jul 4, 2017Modified: May 13, 2026

JSON object

Loading...
6.1
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Exploitability: 2.8 / Impact: 2.7
Source: NVD

Description

There is reflected XSS in TOPdesk before 5.7.6 and 6.x and 7.x before 7.03.019.

Affected (113)

Products: Topdesk: Topdesk
Topdesk
1 product
Topdesk
Configuration A
113 vulnerable
Vulnerable SoftwareAffected Versions
Topdesk
Topdesk
Up to 5.7.5
Topdesk
Version 6.04.001
Topdesk
Version 6.04.005
Topdesk
Version 6.04.006
Topdesk
Version 6.04.008
Topdesk
Version 6.04.011
Topdesk
Version 6.04.012
Topdesk
Version 6.04.013
Topdesk
Version 6.04.015
Topdesk
Version 6.04.016
Topdesk
Version 6.05.002
Topdesk
Version 6.05.006
Topdesk
Version 6.05.007
Topdesk
Version 6.05.008
Topdesk
Version 6.05.009
Topdesk
Version 6.05.010
Topdesk
Version 6.05.016
Topdesk
Version 6.05.017
Topdesk
Version 6.06.002
Topdesk
Version 6.06.003
Topdesk
Version 6.06.004
Topdesk
Version 6.06.005
Topdesk
Version 6.06.006
Topdesk
Version 6.06.007
Topdesk
Version 6.06.013
Topdesk
Version 6.06.014
Topdesk
Version 6.06.020
Topdesk
Version 6.07.002
Topdesk
Version 6.07.005
Topdesk
Version 6.07.007
Topdesk
Version 6.07.010
Topdesk
Version 6.07.014
Topdesk
Version 6.07.019
Topdesk
Version 6.07.022
Topdesk
Version 6.07.023
Topdesk
Version 6.08.001
Topdesk
Version 6.08.011
Topdesk
Version 6.08.016
Topdesk
Version 6.08.020
Topdesk
Version 6.08.021
Topdesk
Version 6.08.024
Topdesk
Version 6.08.025
Topdesk
Version 6.08.029
Topdesk
Version 6.08.030
Topdesk
Version 6.08.031
Topdesk
Version 6.08.033
Topdesk
Version 6.08.034
Topdesk
Version 6.09.001
Topdesk
Version 6.09.005
Topdesk
Version 6.09.010
Topdesk
Version 6.09.011
Topdesk
Version 6.09.012
Topdesk
Version 6.09.013
Topdesk
Version 6.09.014
Topdesk
Version 6.09.015
Topdesk
Version 6.09.017
Topdesk
Version 6.09.018
Topdesk
Version 6.09.019
Topdesk
Version 6.09.021
Topdesk
Version 6.09.022
Topdesk
Version 6.09.023
Topdesk
Version 6.09.024
Topdesk
Version 6.10.008
Topdesk
Version 6.10.015
Topdesk
Version 6.10.021
Topdesk
Version 6.10.022
Topdesk
Version 6.10.025
Topdesk
Version 6.10.026
Topdesk
Version 6.10.027
Topdesk
Version 6.10.037
Topdesk
Version 6.10.040
Topdesk
Version 6.11.003
Topdesk
Version 6.11.015
Topdesk
Version 6.11.024
Topdesk
Version 6.11.030
Topdesk
Version 6.12.006
Topdesk
Version 6.12.007
Topdesk
Version 6.12.008
Topdesk
Version 6.12.013
Topdesk
Version 6.12.015
Topdesk
Version 6.12.020
Topdesk
Version 6.12.022
Topdesk
Version 6.12.025
Topdesk
Version 6.12.026
Topdesk
Version 7.01.001
Topdesk
Version 7.01.008
Topdesk
Version 7.01.020
Topdesk
Version 7.01.024
Topdesk
Version 7.02.012
Topdesk
Version 7.02.013
Topdesk
Version 7.02.014
Topdesk
Version 7.02.016
Topdesk
Version 7.02.021
Topdesk
Version 7.03.007
Topdesk
Version 7.03.008
Topdesk
Version 7.03.018
Topdesk
Version 7.03.019
Topdesk
Version 7.03.020
Topdesk
Version 7.03.022
Topdesk
Version 7.04.001
Topdesk
Version 7.04.004
Topdesk
Version 7.04.019
Topdesk
Version 7.04.021
Topdesk
Version 7.04.023
Topdesk
Version 7.05.006
Topdesk
Version 7.05.007
Topdesk
Version 7.05.020
Topdesk
Version 7.05.023
Topdesk
Version 7.06.001
Topdesk
Version 7.06.005
Topdesk
Version 7.06.010
Topdesk
Version 7.06.011
Topdesk
Version 7.06.014

Related CWEs

CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

References (2)

Source: cve@mitre.org
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.