CVE-2021-44201

CVE-2021-44201: Cross-site scripting (XSS) was possible in notification pop-ups

Vendor Acronis

Product Acronis Cyber Protect 15

Weakness CWE-79 · XSS

Published November 29, 2021

Last update September 17, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

Cross-site scripting (XSS) was possible in notification pop-ups. The following products are affected: Acronis Cyber Protect 15 (Windows, Linux) before build 28035

Key dates

02Disclosure timeline

November 29, 2021 CVE published

September 17, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2021-44201 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/79.html

Related vulnerabilities

04Related CVE

CVE-2025-8064 Bible SuperSearch <= 6.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via selector_height Parameter CVE-2024-12119 FooGallery – Responsive Photo Gallery, Image Viewer, Justified, Masonry & Carousel <= 2.4.29 - Authenticated (Custom+) Stored Cross-Site Scripting via Album Title Size CVE-2024-43348 WordPress Purity Of Soul theme <= 1.9 - Reflected Cross Site Scripting (XSS) vulnerability CVE-2024-51735 Stored Cross-site Scripting to RCE on Osmedeus Web Server CVE-2024-52356 WordPress The Pack Elementor addons plugin <= 2.1.0 - Cross Site Scripting (XSS) vulnerability

Identifiers

CVE CVE-2021-44201

CWE CWE-79

Affected versions

Vendor Acronis

Product Acronis Cyber Protect 15

Affected ≥ unspecified and < 28035

Vendor Acronis

Product Acronis Cyber Protect 15

Affected ≥ unspecified and < 28035