CVE-2016-9500

CVE-2016-9500: The Accellion FTP server prior to version FTA_9_12_220 is vulnerable to informaiton exposure

Vendor Accellion
Product FTP Server
Weakness CWE-80 · XSS · basic
Published July 13, 2018
Last update August 6, 2024

CVSS base score

What the vulnerability does

01Description

Accellion FTP server prior to version FTA_9_12_220 uses the Accusoft Prizm Content flash component, which contains multiple parameters (customTabCategoryName, customButton1Image) that are vulnerable to cross-site scripting.

Key dates

02Disclosure timeline

July 13, 2018 CVE published
August 6, 2024 Record updated